Lucene search
WpvulndbWPVDB-ID:28158ABC-FFB1-4AA4-B24A-6841BD80845EHistoryJan 13, 2023 - 12:00 a.m.
MagicForm <= 0.1 - Reflected Cross-Site Scripting
2023-01-1300:00:00
wpscan.com
4
plugin
reflected cross-site scripting
parameter sanitisation
high privilege users
EPSS
0.001
Percentile
31.2%
The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Related
nvd
nvd
CVE-2022-47592
2023-03-20 12:15:10
cve
cve
CVE-2022-47592
2023-03-20 12:15:10
prion
prion
Cross site scripting
2023-03-20 12:15:00
cvelist
cvelist