Vulnerabilities > Rssimport Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-01-16 | CVE-2022-4658 | Unspecified vulnerability in Rssimport Project Rssimport The RSSImport WordPress plugin through 4.6.1 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack. | 5.4 |