Vulnerabilities > Realfavicongenerator > Favicon BY Realfavicongenerator > 1.3.22
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-04-11 | CVE-2022-0471 | Cross-site Scripting vulnerability in Realfavicongenerator Favicon BY Realfavicongenerator The Favicon by RealFaviconGenerator WordPress plugin before 1.3.23 does not properly sanitise and escape the json_result_url parameter before outputting it back in the Favicon admin dashboard, leading to a Reflected Cross-Site Scripting issue | 4.3 |