Authenticated Stored Cross-Site Scripting (XSS) Vulnerability in Christian Salazar's add2fav Plugin <= 1.0 for WordPress

Authenticated Stored Cross-Site Scripting (XSS) Vulnerability in Christian Salazar's add2fav Plugin <= 1.0 for WordPress

CVE-2022-37404 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Christian Salazar's add2fav plugin <= 1.0 at WordPress.

Learn more about our Wordpress Pen Testing.