Ellipsis Human Presence Technology <= 2.0.8 - Unauthenticated Reflected Cross Site Scripting



Description
The page parameter of the inc/protected-forms-table.php file is affected by a reflected XSS issue.

Plugin is still affected and has been closed
Proof of Concept The PoC will be displayed once the issue has been remediated.

Affects Plugin

References

PACKETSTORM 154393

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Original Researcher Ricardo Sanchez
Views 1982
Verified No
WPVDB ID 9875

Timeline

Publicly Published 2019-09-07 (16 days ago)
Added 2019-09-10 (13 days ago)
Last Updated 2019-09-10 (13 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin