2023-08-07 14:31:23
WPScan
PUBLISHED
The WPCode WordPress plugin before 2.0.13.1 does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting