NuytsTech Security

CVE-2022-0176

by ·

The PowerPack Lite for Beaver Builder WordPress plugin before 1.2.9.3 does not sanitise and escape the tab parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting

Date published : 2022-02-14

https://plugins.trac.wordpress.org/changeset/2655379

https://wpscan.com/vulnerability/564a66d5-7fab-4de0-868a-e19466a507af

Tags: