Vulnerabilities > NO Future Posts Project

DATE CVE VULNERABILITY TITLE RISK
2022-05-30 CVE-2022-1387 Cross-site Scripting vulnerability in NO Future Posts Project NO Future Posts 1.4
The No Future Posts WordPress plugin through 1.4 does not escape its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks when unfiltered_html is disallowed
3.5