0.006 Low
EPSS
Percentile
77.7%
The plugin did not sanitise the _drts_form_build_id parameter in a POST request to /wp-admin/admin.php?page=drts/directories, allowing for HTML or JavaScript injection.
packetstormsecurity.com/files/160452/
seclists.org/fulldisclosure/2020/Dec/14