What the vulnerability does
01Description
The data-tables-generator-by-supsystic plugin before 1.9.92 for WordPress lacks CSRF nonce checks for AJAX actions. One consequence of this is stored XSS.
CVSS base score
CVSS vector
CVSS:3.0/AC:L/AV:N/A:H/C:H/I:H/PR:N/S:C/UI:R
What the vulnerability does
The data-tables-generator-by-supsystic plugin before 1.9.92 for WordPress lacks CSRF nonce checks for AJAX actions. One consequence of this is stored XSS.
Key dates
External resources