The Permalink Manager Lite WordPress plugin prior to 2.2.15 and Permalink Manager Pro WordPress plugin prior to 2.2.15 do not sanitise and escape query parameters before outputting them back in the debug page, leading to a Reflected Cross-Site Scripting issue
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
permalink manager lite project permalink manager lite |
||
permalink manager project permalink manager |