Описание
The Article Directory WordPress plugin through 1.3 does not properly sanitize the publish_terms_text setting before displaying it in the administration panel, which may enable administrators to conduct Stored XSS attacks in multisite contexts.
The Article Directory WordPress plugin through 1.3 does not properly sanitize the publish_terms_text setting before displaying it in the administration panel, which may enable administrators to conduct Stored XSS attacks in multisite contexts.
Связанные уязвимости
CVSS3: 4.8
nvd
почти 3 года назад
The Article Directory WordPress plugin through 1.3 does not properly sanitize the `publish_terms_text` setting before displaying it in the administration panel, which may enable administrators to conduct Stored XSS attacks in multisite contexts.