← Back

Min Max Control

min_max_control

Vendor: Codeastrology • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-4270
1Codeastrology
1Min Max Control
May 2, 2025
Sep 11, 2023
N/A· v4
6.1 MEDIUM· v3
N/A· v2
The Min Max Control WordPress plugin before 4.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users...Show more
The Min Max Control WordPress plugin before 4.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.Show less