Ellipsis Human Presence Technology <= 2.0.8 - Unauthenticated Reflected Cross Site Scripting



Description
The page parameter of the inc/protected-forms-table.php file is affected by a reflected XSS issue.

Plugin is still affected and has been closed
Proof of Concept The PoC will be displayed once the issue has been remediated.

Affects Plugin

References

PACKETSTORM 154393

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Original Researcher Ricardo Sanchez
Views 3677
Verified No
WPVDB ID 9875

Timeline

Publicly Published 2019-09-07 (2 months ago)
Added 2019-09-10 (2 months ago)
Last Updated 2019-09-10 (2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin