Vulnerabilities > Json Content Importer > Json Content Importer > 1.2.11
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-12-26 | CVE-2023-6268 | Cross-site Scripting vulnerability in Json-Content-Importer Json Content Importer The JSON Content Importer WordPress plugin before 1.5.4 does not sanitise and escape the tab parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin | 6.1 |