CVE-2022-2655 – The Classified Listing Pro WordPress plugin before 2.0.20 does not escape a generated URL …

Vuln ID: CVE-2022-2655

Published:  2022-09-16  09:15:10Z

Description: The Classified Listing Pro WordPress plugin before 2.0.20 does not escape a generated URL before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting

Source: NVD.NIST.GOV