Forum MenüForum-NavigationForumAktivitätAnmeldenRegistrierenForum-Breadcrumbs - Du bist hier:ForumOffenes Forum: Security AdvisoriesCVE-2022-2763 - WP Socializer Wor …AntwortenAntworten: CVE-2022-2763 - WP Socializer WordPress plugin <blockquote><div class="quotetitle">Zitat von <a class="profile-link highlight-default" href="https://mits.nrw/forum/profile/forum/">MITs Forum</a> am 3. Oktober 2022, 0:00 Uhr</div>The WP Socializer WordPress plugin before 7.3 does not sanitise and escape some of its Icons settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup) References https://wpscan.com/vulnerability/36a7b872-31fa-4375-9be7-8f787e616ed5</blockquote><br> Abbrechen