WordPress CDI <5.1.9 - Cross Site Scripting CVE-2022-1933 Scanner
Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload.
Can be used by
Scan only one
WordPress CDI <5.1.9 - Cross Site Scripting CVE-2022-1933 Scanner Detail
The CDI WordPress plugin before 5.1.9 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action (available to both unauthenticated and authenticated users), leading to a Reflected Cross-Site Scripting