Donorbox 7.1~7.1.1 - Stored Cross-Site Scripting via Shortcode

2019-12-31T00:00:00
ID WPVDB-ID:9998
Type wpvulndb
Reporter Sybre Waaijer
Modified 2020-01-01T00:00:00

Description

WordPress Vulnerability - Donorbox 7.1~7.1.1 - Stored Cross-Site Scripting via Shortcode [donate url='/\?\" autofocus onfocus=\"alert(window)\" abitraryAttributeToValidateShortcodeParsing=\"']