- Lana Codes
- Common Vulnerabilities
Custom Post Type List Shortcode by Blackbird Interactive <= 1.4.4 - Contributor+ Stored XSS
LANACOMMONVDB ID: e03184ec-d3b1-4161-b5c1-5c3ddf4b33a9
The plugin does not sanitize and escapes some parameters, which could allow users with a role as low as contributor to perform Cross-Site Scripting (XSS) attacks.
You must be log in to view vulnerability details.
Or register a new account.