CVEs-PoC/2022/CVE-2022-2391.md at b0e96c877abb080d7cf221c036336480ff266ccf

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 02:45:46 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

738 B

Raw Blame History

CVE-2022-2391

Description

The Inspiro PRO WordPress plugin does not sanitize the portfolio slider description, allowing users with privileges as low as Contributor to inject JavaScript into the description.

POC

Reference

https://wpscan.com/vulnerability/dd6ebf6b-209b-437c-9fe4-527ab9e3b9e3

Github

https://github.com/ARPSyndicate/cvemon

738 B Raw Blame History

CVE-2022-2391

Description

POC

Reference

Github

738 B

Raw Blame History