CVE-2022-2181

Description

The Advanced WordPress Reset WordPress plugin before 1.6 does not escape some generated URLs before outputting them back in href attributes of admin dashboard pages, leading to Reflected Cross-Site Scripting

Related CPE's

a sigmaplugin advanced_wordpress_reset *****wordpress **

References

https://wpscan.com/vulnerability/68ddf343-6e69-44a7-bd33-72004053d41e

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io