CVE-2022-2384 – The Digital Publications by Supsystic WordPress plugin before 1.7.4 does not sanitise and …

15 August 2022

Vuln ID: CVE-2022-2384

Published: 2022-08-15 11:21:24Z

Description: The Digital Publications by Supsystic WordPress plugin before 1.7.4 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Source: NVD.NIST.GOV

Date:

15 August 2022

Categorie(s):

NVD

Tag(s):

NVD

Red Hat updates Trusted Software Supply Chain to enhance early security integration18 April 2024
5 Cybersecurity Resolutions for the New Year18 April 2024
Full Review of Paragon Hard Disk Manager for Windows18 April 2024
Six ways to fend off spam in corporate networks18 April 2024
EU tells Meta it can’t paywall privacy18 April 2024