cve/CVE-2022-2391.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 10:17:57 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

738 B

Raw Permalink Blame History

CVE-2022-2391

Description

The Inspiro PRO WordPress plugin does not sanitize the portfolio slider description, allowing users with privileges as low as Contributor to inject JavaScript into the description.

POC

Reference

https://wpscan.com/vulnerability/dd6ebf6b-209b-437c-9fe4-527ab9e3b9e3

Github

https://github.com/ARPSyndicate/cvemon

738 B Raw Permalink Blame History

CVE-2022-2391

Description

POC

Reference

Github

738 B

Raw Permalink Blame History