Security Advisory

CVE-2023-1019

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-15 12:15:43

Last updated 2025-01-24 21:15:37

Assigner WPScan

State PUBLISHED

Description

The Help Desk WP WordPress plugin through 1.2.0 does not sanitise and escape some parameters, which could allow users with a role as low as Editor to perform Cross-Site Scripting attacks.

← Browse all CVEs View on cve.org ↗