Api Bearer Auth Project: >> Api Bearer Auth >> 2017-11-30 Security Vulnerabilities
In the api-bearer-auth plugin before 20190907 for WordPress, the server parameter is not correctly filtered in the swagger-config.yaml.php file, and it is possible to inject JavaScript code, aka XSS.
CVSS Score
6.1
EPSS Score
0.159
Published
2019-09-15