The Insights from Google PageSpeed WordPress plugin before 4.0.4 does not sanitise and escape various parameters before outputting them back in attributes in the plugin's settings dashboard, leading to Reflected Cross-Site Scripting
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: WPScan
Published:
Updated: 2024-08-02T23:25:40.428Z
Reserved: 2022-01-31T00:00:00
Link: CVE-2022-0431

No data.

Status : Modified
Published: 2022-04-04T16:15:09.253
Modified: 2024-11-21T06:38:36.830
Link: CVE-2022-0431

No data.