Vulnerabilities > Nitinmaurya > Wordpress Visitors > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-09-26 CVE-2022-4541 Cross-site Scripting vulnerability in Nitinmaurya Wordpress Visitors 1.0
The WordPress Visitors plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a spoofed HTTP Header value in versions up to, and including, 1.0 due to insufficient input sanitization and output escaping.
network
low complexity
nitinmaurya CWE-79
6.1