Vulnerabilities and security researches foradvanced-wp-reset advanced-wp-reset

Jun 07, 2024

CVE, Research URL: CVE-2022-2181
Home page URL: Security reports for Advanced WordPress Reset – Debug, Recover & Reset WP
Application: Advanced WordPress Reset – Debug, Recover & Reset WP
Date: Aug 01, 2022
Research Description: The Advanced WordPress Reset WordPress plugin before 1.6 does not escape some generated URLs before outputting them back in href attributes of admin dashboard pages, leading to Reflected Cross-Site Scripting
Affected versions: max 1.6.
Status: vulnerable