CVE-2022-0899

Description

The Header Footer Code Manager WordPress plugin before 1.1.24 does not escape generated URLs before outputting them back in attributes in an admin page, leading to a Reflected Cross-Site Scripting.

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics