Vulnerabilities > CVE-2022-1268 - Unspecified vulnerability in Donate Extra Project Donate Extra 2.02

047910
CVSS 6.1 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
donate-extra-project

Summary

The Donate Extra WordPress plugin through 2.02 does not sanitise and escape a parameter before outputting it back in the response, leading to a Reflected cross-Site Scripting

Vulnerable Configurations

Part Description Count
Application
Donate_Extra_Project
1