Vulnerabilities > Call Book Mobile BAR Project

DATE CVE VULNERABILITY TITLE RISK
2022-05-30 CVE-2022-1644 Cross-site Scripting vulnerability in Call&Book Mobile BAR Project Call&Book Mobile BAR
The Call&Book Mobile Bar WordPress plugin through 1.2.2 does not sanitize and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed.
network
low complexity
call-book-mobile-bar-project CWE-79
4.8