Ad Inserter – Ad Manager & AdSense Ads, CVE-2022-0288

CVE, Research URL: CVE-2022-0288
Home page URL: Security reports for Ad Inserter – Ad Manager & AdSense Ads
Application: Ad Inserter – Ad Manager & AdSense Ads
Published on: Feb 21, 2022
Research Description: The Ad Inserter WordPress plugin before 2.7.10, Ad Inserter Pro WordPress plugin before 2.7.10 do not sanitise and escape the html_element_selection parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting
Affected versions: max 2.7.12.
Status: vulnerable

Ad Inserter &#8211; Ad Manager &amp; AdSense Ads, CVE-2022-0288