Plumislandmedia

Index Wp Mysql For Speed

1 vulnerability found

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2024-4977

Exploit
  • EPSS 0.33%
  • Published 13.07.2024 06:15:03
  • Last modified 13.06.2025 00:02:24

The Index WP MySQL For Speed WordPress plugin before 1.4.18 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin