VYPR

Frontend Post WordPress Plugin

by WordPress

CVEs (1)

  • CVE-2022-4946MedJun 5, 2023
    risk 0.35cvss 5.4epss 0.00

    The Frontend Post WordPress Plugin WordPress plugin through 2.8.4 does not validate an attribute of one of its shortcode, which could allow users with a role as low as contributor to add a malicious shortcode to a page/post, which will redirect users to an arbitrary domain.