CVE-2020-36769 | kevinlangleyjr Widget Settings Importer-Exporter Plugin up to 1.5.3 on WordPress wp_ajax_import_widget_dataparameter cross site scripting

Posted by Angelo Barbosa | Dec 23, 2023 | CVE

A vulnerability was found in kevinlangleyjr Widget Settings Importer-Exporter Plugin up to 1.5.3 on WordPress. It has been rated as problematic. Affected by this issue is the function wp_ajax_import_widget_dataparameter. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2020-36769. The attack may be launched remotely. There is no exploit available.

CVE-2020-36769 | kevinlangleyjr Widget Settings Importer-Exporter Plugin up to 1.5.3 on WordPress wp_ajax_import_widget_dataparameter cross site scripting

Related Posts

CVE-2023-6457 | Hitachi Tuning Manager prior 8.8.5-04 on Windows Server default permission (sec-2024-104)

CVE-2024-34213 | Totolink CP450 4.1.0cu.747_B20191224 SetPortForwardRules stack-based overflow

CVE-2024-27984 | Ivanti Avalanche up to 6.4.2 Web denial of service

CVE-2024-46461 | VideoLAN VLC Media Player up to 3.0.20 Mms Stream heap-based overflow