Vulnerabilities > Wpgenious > Wpgenius JOB Listing > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-10-15 | CVE-2021-39335 | Cross-site Scripting vulnerability in Wpgenious Wpgenius JOB Listing 1.0.2 The WpGenius Job Listing WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the ~/src/admin/class/class-wpgenious-job-listing-options.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 1.0.2. | 2.1 |