WordPress WP-Ban 漏洞列表

共找到 2 个与 WordPress WP-Ban 相关的漏洞

📅 加载漏洞趋势中...

CVE-2022-4260: WordPress WP-Ban <1.69.1 - Stored Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: WordPress WP-Ban

WordPress WP-Ban plugin before 1.69.1 contains a stored cross-site scripting vulnerability. The plugin does not sanitize and escape some of its settings, which can allow high-privilege users to steal cookie-based authentication credentials and launch other attacks. This vulnerability can be exploited even when the unfiltered_html capability is disallowed, for example in multisite setup.
CVE-2022-4260: WordPress WP-Ban <1.69.1 - Stored Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: WordPress WP-Ban

WordPress WP-Ban plugin before 1.69.1 contains a stored cross-site scripting vulnerability. The plugin does not sanitize and escape some of its settings, which can allow high-privilege users to steal cookie-based authentication credentials and launch other attacks. This vulnerability can be exploited even when the unfiltered_html capability is disallowed, for example in multisite setup.