Warning: Undefined variable $author_out in /home/afaghhos/domains/afaghhosting.net/public_html/blog/wp-content/plugins/removehide-author-date-category-like-entry-meta/remove-author-date-and-category-metadata.php on line 147

Warning: Undefined variable $date_out in /home/afaghhos/domains/afaghhosting.net/public_html/blog/wp-content/plugins/removehide-author-date-category-like-entry-meta/remove-author-date-and-category-metadata.php on line 160

Warning: Undefined variable $category_out in /home/afaghhos/domains/afaghhosting.net/public_html/blog/wp-content/plugins/removehide-author-date-category-like-entry-meta/remove-author-date-and-category-metadata.php on line 173

Warning: Undefined variable $comment_out in /home/afaghhos/domains/afaghhosting.net/public_html/blog/wp-content/plugins/removehide-author-date-category-like-entry-meta/remove-author-date-and-category-metadata.php on line 186

Warning: Undefined variable $edit_out in /home/afaghhos/domains/afaghhosting.net/public_html/blog/wp-content/plugins/removehide-author-date-category-like-entry-meta/remove-author-date-and-category-metadata.php on line 198

مدیریت منیج سرور ثبت دامنه

CVE-2024-13605

توسط

mo0dir
در

Description

The Form Maker by 10Web WordPress plugin before 1.15.33 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

References

https://wpscan.com/vulnerability/d5543b3b-1c28-481b-aba4-9a07d160e1f2/

مدیریت سرور پشتیبانی و ثبت دامنه – آفاق هاستینگ