Vulnerabilities > RSS Feed Widget Project

DATE CVE VULNERABILITY TITLE RISK
2020-08-26 CVE-2020-24314 Cross-site Scripting vulnerability in RSS Feed Widget Project RSS Feed Widget
Fahad Mahmood RSS Feed Widget Plugin v2.7.9 and lower does not sanitize the value of the "t" GET parameter before echoing it back out inside an input tag.
network
low complexity
rss-feed-widget-project CWE-79
6.1