Security Advisory
CVE-2020-35944
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An issue was discovered in the PageLayer plugin before 1.1.2 for WordPress. The pagelayer_settings_page function is vulnerable to CSRF, which can lead to XSS.