mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-10 20:04:58 +02:00
0xMarcio
774 B
774 B
CVE-2022-4655
&color=brighgreen)
Description
The Welcart e-Commerce WordPress plugin before 2.8.9 does not validate and escapes one of its shortcode attributes, which could allow users with a role as low as a contributor to perform a Stored Cross-Site Scripting attack.
POC
Reference
Github
No PoCs found on GitHub currently.