Limited Black Friday Offer:

WordPress Mapping Multiple URLs Redirect Same Page <=5.8 - Cross-Site Scripting CVE-2022-0599 Scanner

Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload.

Short Info

Level

Medium

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Domain, Ipv4

Parent Category

WordPress Mapping Multiple URLs Redirect Same Page <=5.8 - Cross-Site Scripting CVE-2022-0599 Scanner Detail

The Mapping Multiple URLs Redirect Same Page WordPress plugin through 5.8 does not sanitize and escape the mmursp_id parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting.

https://wpscan.com/vulnerability/4f1d45bc-d3bd-472c-959d-05abeff32765