Joomunited: Security Vulnerabilities
The WP Meta SEO WordPress plugin before 4.4.7 does not sanitise or escape the breadcrumb separator before outputting it to the page, allowing a high privilege user such as an administrator to inject arbitrary javascript into the page even when unfiltered html is disallowed.
CVSS Score
4.8
EPSS Score
0.002
Published
2022-05-23
The wp-latest-posts plugin before 3.7.5 for WordPress has XSS.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-20
Page 3