Description
qdPM V9.1 is vulnerable to Cross Site Scripting (XSS) via qdPM\install\modules\database_config.php.
Remediation
References
Related Vulnerabilities
WordPress Plugin Welcome Announcement Multiple Cross-Site Scripting Vulnerabilities (1.0.5)
WordPress Plugin SecureMoz Security Audit PHP Object Injection (1.0.5)
MySQL CVE-2016-0609 Vulnerability (CVE-2016-0609)
Oracle Database Server CVE-2021-35576 Vulnerability (CVE-2021-35576)
WordPress Plugin Internal Links Manager Multiple Cross-Site Scripting Vulnerabilities (2.1.0)