Pretty Url 漏洞列表

共找到 2 个与 Pretty Url 相关的漏洞

📅 加载漏洞趋势中...

CVE-2023-2009: Pretty Url <= 1.5.4 - Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: Pretty Url

Plugin does not sanitize and escape the URL field in the plugin settings, which could allow high-privilege users to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
CVE-2023-2009: Pretty Url <= 1.5.4 - Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: Pretty Url

Plugin does not sanitize and escape the URL field in the plugin settings, which could allow high-privilege users to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).