Description
qdPM 9.1 suffers from Cross-site Scripting (XSS) via configuration?type=[XSS] parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin WebHotelier for WordPress Cross-Site Scripting (1.5)
WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Directory Traversal (1.3.42)
Atlassian Jira Other Vulnerability (CVE-2019-20101)
WordPress Plugin Xhanch-My Twitter Multiple Cross-Site Request Forgery Vulnerabilities (2.7.7)
OpenVPN AS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-2692)