Vulnerabilities > CVE-2022-0150 - Unspecified vulnerability in WP Accessibility Helper Project WP Accessibility Helper
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
The WP Accessibility Helper (WAH) WordPress plugin before 0.6.0.7 does not sanitise and escape the wahi parameter before outputting back its base64 decode value in the page, leading to a Reflected Cross-Site Scripting issue
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |