← volver
CVE-2022-1990

Nested Pages < 3.1.21 - Admin+ Stored Cross Site Scripting

EPSS 0.6%CWE-79
The Nested Pages WordPress plugin before 3.1.21 does not escape and sanitize the some of its settings, which could allow high privilege users to perform Stored Cross-Site Scripting attacks when the unfiltered_html is disallowed
Productos afectados
Unknown · Nested Pages

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://wpscan.com/vulnerability/42f1bf1f-95a8-41ee-a637-88deb80ab870