WP EasyPay – Square for WordPress, CVE-2023-1465
- CVE, Research URL
- Application
- Published on
- Aug 16, 2023
- Research Description
- The WP EasyPay WordPress plugin before 4.1 does not escape some generated URLs before outputting them back in pages, leading to Reflected Cross-Site Scripting issues which could be used against high privilege users such as admin
- Affected versions
-
max 4.1.
- Status
-
vulnerable