CVE-2022-0598 – The Login with phone number WordPress plugin through 1.3.7 do not sanitise and escape plug …

1 August 2022

Vuln ID: CVE-2022-0598

Published: 2022-08-01 13:15:09Z

Description: The Login with phone number WordPress plugin through 1.3.7 do not sanitise and escape plugin settings which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Source: NVD.NIST.GOV

Date:

1 August 2022

Categorie(s):

NVD

Tag(s):

NVD

Breakthrough in Quantum Cloud Computing Ensures its Security and Privacy19 April 2024
How To Teach Your Kids About DeepFakes19 April 2024
In memoriam: Steven Young, respected CISO and former Cybersecurity Collaborative VP19 April 2024
The Biggest Deepfake Porn Website Is Now Blocked in the UK19 April 2024
The MSSP perspective: CISO insights into stronger security19 April 2024