CVE-2022-2655

Description

The Classified Listing Pro WordPress plugin before 2.0.20 does not escape a generated URL before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting

Related CPE's

a radiustheme classified_listing_pro_-_classified_ads_\&_business_directory *****wordpress **

References

https://wpscan.com/vulnerability/acc9675a-56f6-411a-9594-07144c2aad1b

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io