Security Advisory

CVE-2024-7082

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-06 06:00:07

Last updated 2024-10-27 16:18:02

Assigner WPScan

State PUBLISHED

Description

The Easy Table of Contents WordPress plugin before 2.0.68 does not sanitise and escape some parameters, which could allow users with a role as low as Editor to perform Cross-Site Scripting attacks.

← Browse all CVEs View on cve.org ↗