CVE-2020-36769 | kevinlangleyjr Widget Settings Importer-Exporter Plugin up to 1.5.3 on WordPress wp_ajax_import_widget_dataparameter cross site scripting

Posted by Angelo Barbosa | Dec 23, 2023 | CVE

A vulnerability was found in kevinlangleyjr Widget Settings Importer-Exporter Plugin up to 1.5.3 on WordPress. It has been rated as problematic. Affected by this issue is the function wp_ajax_import_widget_dataparameter. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2020-36769. The attack may be launched remotely. There is no exploit available.

CVE-2020-36769 | kevinlangleyjr Widget Settings Importer-Exporter Plugin up to 1.5.3 on WordPress wp_ajax_import_widget_dataparameter cross site scripting

Related Posts

CVE-2024-6412 | HTML Forms Plugin up to 1.3.33 on WordPress cross-site request forgery

CVE-2024-29210 | KnowBe4 Phish Alert Button for Outlook access control

CVE-2024-0169 | Dell Unity up to 5.3 cross site scripting (dsa-2024-042)

CVE-2024-8052 | Review Ratings Plugin up to 1.6 on WordPress cross-site request forgery