The Yellow Yard Searchbar WordPress plugin before 2.8.2 does not escape some URL parameters before outputting them back to the user, leading to Reflected Cross-Site Scripting
References
Link | Resource |
---|---|
https://wpscan.com/vulnerability/c9a106e1-29ae-47ad-907b-01086af3d3fb | Exploit Third Party Advisory |
Configurations
History
07 Nov 2023, 03:46
Type | Values Removed | Values Added |
---|---|---|
CWE |
Information
Published : 2023-02-08 10:15
Updated : 2024-02-28 19:51
NVD link : CVE-2022-2094
Mitre link : CVE-2022-2094
CVE.ORG link : CVE-2022-2094
JSON object : View
Products Affected
yellowyard
- yellow_yard_searchbar
CWE
No CWE.