Unrated severityNVD Advisory· Published Mar 14, 2022· Updated Aug 2, 2024
SEO 301 Meta <= 1.9.1 - Admin+ Stored Cross-Site Scripting
CVE-2022-0701
Description
The SEO 301 Meta WordPress plugin through 1.9.1 does not escape its Request and Destination settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.9.1+ 1 more
- (no CPE)range: <=1.9.1
- (no CPE)range: <=1.9.1
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/68882f81-12d3-4e98-82ff-6754ac4ccfa1mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.