Wpreactions: >> Wp Reactions Lite >> 1.1.9 Security Vulnerabilities
Cross-Site Request Forgery (CSRF) vulnerability in WP Reactions, LLC WP Reactions Lite plugin <= 1.3.8 versions.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-11-09
The WP Reactions Lite WordPress plugin before 1.3.6 does not properly sanitize inputs within wp-admin pages, allowing users with sufficient access to inject XSS payloads within /wp-admin/ pages.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-11-01