Security Advisory

CVE-2022-0230

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-14 14:41:23

Last updated 2024-08-02 23:18:42

Assigner WPScan

State PUBLISHED

Description

The Better WordPress Google XML Sitemaps WordPress plugin through 1.4.1 does not sanitise and escape its logs when outputting them in the admin dashboard, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks against admins

← Browse all CVEs View on cve.org ↗