CVE-2022-2181 – The Advanced WordPress Reset WordPress plugin before 1.6 does not escape some generated UR …

Vuln ID: CVE-2022-2181

Published:  2022-08-01  13:15:10Z

Description: The Advanced WordPress Reset WordPress plugin before 1.6 does not escape some generated URLs before outputting them back in href attributes of admin dashboard pages, leading to Reflected Cross-Site Scripting

Source: NVD.NIST.GOV