Lucene search

K
wpvulndbWpvulndbWPVDB-ID:E194EED6-4462-468F-82ED-D524FF37B515
HistoryDec 08, 2023 - 12:00 a.m.

Machic Core <= 1.2.6 - Reflected Cross-Site Scripting

2023-12-0800:00:00
wpscan.com
5
machic core
plugin vulnerability
cross-site scripting
admin
reflected

AI Score

6.3

Confidence

High

Description The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

AI Score

6.3

Confidence

High

Related for WPVDB-ID:E194EED6-4462-468F-82ED-D524FF37B515