Medium severity4.8NVD Advisory· Published Mar 14, 2022· Updated Jun 17, 2026
CVE-2022-0703
CVE-2022-0703
Description
The GD Mylist WordPress plugin through 1.1.1 does not sanitise and escape some of its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/GD Mylist WordPress plugindescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/fa34beff-c8ab-4297-9c59-b3b0c52f0536nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.