The Brafton plugin before 3.4.8 for WordPress has XSS via... · CVE-2016-10973 · GitHub Advisory Database · GitHub

The Brafton plugin before 3.4.8 for WordPress has XSS via...

Moderate severity Unreviewed Published May 24, 2022 to the GitHub Advisory Database • Updated Jan 28, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

The Brafton plugin before 3.4.8 for WordPress has XSS via the wp-admin/admin.php?page=BraftonArticleLoader tab parameter to BraftonAdminPage.php.

References

Published by the National Vulnerability Database

Sep 16, 2019

Published to the GitHub Advisory Database May 24, 2022

Last updated Jan 28, 2023