CVE-2022-0428

Content Egg < 5.3.0 - Reflected Cross-Site Scripting

EPSS 0.8%CWE-79

The Content Egg WordPress plugin before 5.3.0 does not sanitise and escape the page parameter before outputting back in an attribute in the Autoblogging admin dashboard, leading to a Reflected Cross-Site Scripting

Produtos afetados

Unknown · Content Egg

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://wpscan.com/vulnerability/071a2f69-9cd6-42a8-a56c-264a589784ab