WordPress RSS Aggregator 漏洞列表

共找到 2 个与 WordPress RSS Aggregator 相关的漏洞

📅 加载漏洞趋势中...

CVE-2022-0189: WordPress RSS Aggregator < 4.20 - Authenticated Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: WordPress RSS Aggregator

WordPress RSS Aggregator < 4.20 is susceptible to cross-site scripting. The plugin does not sanitize and escape the id parameter in the wprss_fetch_items_row_action AJAX action before outputting it back in the response, leading to reflected cross-site scripting.
CVE-2022-0189: WordPress RSS Aggregator < 4.20 - Authenticated Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: WordPress RSS Aggregator

WordPress RSS Aggregator < 4.20 is susceptible to cross-site scripting. The plugin does not sanitize and escape the id parameter in the wprss_fetch_items_row_action AJAX action before outputting it back in the response, leading to reflected cross-site scripting.