← Back to CVE List
CVE-2022-2391
The Inspiro PRO WordPress plugin does not sanitize the portfolio slider description, allowing users with privileges as low as Contributor to inject JavaScript into the description.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt