cve/CVE-2022-0431.md at 43553e9af13bbdba84028635c21659dede3160a7

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

The Insights from Google PageSpeed WordPress plugin before 4.0.4 does not sanitise and escape various parameters before outputting them back in attributes in the plugin's settings dashboard, leading to Reflected Cross-Site Scripting

POC

Reference

https://wpscan.com/vulnerability/52bd94df-8816-48fd-8788-38d045eb57ca

Github

https://github.com/ARPSyndicate/cvemon

813 B Raw Blame History

CVE-2022-0431

Description

POC

Reference

Github

813 B

Raw Blame History