Lucene search
Ran CraneWPEX-ID:5DD6F625-6738-4E6A-81DC-21C0ADD4368DHistoryMar 04, 2022 - 12:00 a.m.
Conference Scheduler < 2.4.3 - Reflected Cross-Site Scripting
2022-03-0400:00:00
Ran Crane
84
conference scheduler
cross-site scripting
security exploit
EPSS
0.001
Percentile
40.2%
The plugin does not sanitize and escape the tab parameter before outputting back in an admin page, leading to a Reflected Cross-Site Scripting.
https://example.com/wp-admin/edit.php?post_type=conf_workshop&page=conf_scheduler_options&tab="><svg onload=alert(/XSS/)>Related
cvelist
cvelist
CVE-2022-0600 Conference Scheduler < 2.4.3 - Reflected Cross-Site Scripting
2022-03-28 17:23:01
wpvulndb
wpvulndb
Conference Scheduler < 2.4.3 - Reflected Cross-Site Scripting
2022-03-04 00:00:00
patchstack
patchstack
nvd
nvd
CVE-2022-0600
2022-03-28 18:15:09
prion
prion
Cross site scripting
2022-03-28 18:15:00
cve
cve
CVE-2022-0600
2022-03-28 18:15:09