Lucene search

K
wpvulndbWpvulndbWPVDB-ID:1E061893-5E86-4F10-8E92-72DD901530CE
HistoryMar 20, 2023 - 12:00 a.m.

Store Locator WordPress < 1.4.10 - Editor+ Stored XSS

2023-03-2000:00:00
wpscan.com
6
plugin
xss
wordpress
editor
vulnerability

0.0005 Low

EPSS

Percentile

18.0%

The plugin does not sanitise and escape some parameters (such as category_name, description, description_2 etc), which could allow users with a role as low as Editor to perform Cross-Site Scripting attacks

CPENameOperatorVersion
agile-store-locatorlt1.4.10

0.0005 Low

EPSS

Percentile

18.0%

Related for WPVDB-ID:1E061893-5E86-4F10-8E92-72DD901530CE