XSS Vulnerability in SmartTagPlugin Prior to Version 1.2.21-6

XSS Vulnerability in SmartTagPlugin Prior to Version 1.2.21-6

CVE-2022-36859 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Improper input validation vulnerability in SmartTagPlugin prior to version 1.2.21-6 allows privileged attackers to trigger a XSS on a victim's devices.

Learn more about our Web Application Penetration Testing UK.