Security Advisory

CVE-2022-0288

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-21 10:46:13

Last updated 2024-08-02 23:25:39

Assigner WPScan

State PUBLISHED

Description

The Ad Inserter WordPress plugin before 2.7.10, Ad Inserter Pro WordPress plugin before 2.7.10 do not sanitise and escape the html_element_selection parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting

← Browse all CVEs View on cve.org ↗