CVE-2022-2173
17.07.2022, 11:15
The Advanced Database Cleaner WordPress plugin before 3.1.1 does not escape numerous generated URLs before outputting them back in href attributes of admin dashboard pages, leading to Reflected Cross-Site Scripting
| Vendor | Product | Version |
|---|---|---|
| sigmaplugin | advanced_database_cleaner | 𝑥 < 3.1.1 |
𝑥
= Vulnerable software versions