Description
Cross-site scripting (XSS) vulnerability in the filemanager in b2evolution before 5.2.1 allows remote attackers to inject arbitrary web script or HTML via the fm_filter parameter to blogs/admin.php.
Remediation
References
Related Vulnerabilities
WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.113)
WordPress Plugin Header Footer Code Manager Cross-Site Scripting (1.1.16)
WordPress Plugin Chamber Dashboard Member Manager Cross-Site Scripting (2.0.5)
Oracle JRE CVE-2023-22081 Vulnerability (CVE-2023-22081)
WordPress Plugin Sliced Invoices-WordPress Invoice Multiple Vulnerabilities (3.8.2)