Advanced Database Cleaner, CVE-2022-2173

CVE, Research URL: CVE-2022-2173
Home page URL: Security reports for Advanced Database Cleaner
Application: Advanced Database Cleaner
Published on: Jul 17, 2022
Research Description: The Advanced Database Cleaner WordPress plugin before 3.1.1 does not escape numerous generated URLs before outputting them back in href attributes of admin dashboard pages, leading to Reflected Cross-Site Scripting
Affected versions: max 3.1.1.
Status: vulnerable