cve/CVE-2022-2565.md at ba290685fe22de220a539dbecbe46bd650f1a0d5

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-29 09:41:05 +00:00

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

The Simple Payment Donations & Subscriptions WordPress plugin before 4.2.1 does not sanitise and escape user input given in its forms, which could allow unauthenticated attackers to perform Cross-Site Scripting attacks against admins

POC

Reference

https://wpscan.com/vulnerability/d89eff7d-a3e6-4876-aa0e-6d17e206af83
https://wpscan.com/vulnerability/d89eff7d-a3e6-4876-aa0e-6d17e206af83

Github

No PoCs found on GitHub currently.

971 B Raw Blame History

CVE-2022-2565

Description

POC

Reference

Github

971 B

Raw Blame History