CVE-2022-4653
16.01.2023, 16:15
The Greenshift WordPress plugin before 4.8.9 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack.Enginsight
| Vendor | Product | Version |
|---|---|---|
| greenshiftwp | greenshift_-_animation_and_page_builder_blocks | 𝑥 < 4.8.9 |
𝑥
= Vulnerable software versions