Sanitization and output escaping missing in tab Upgrade to Pro

Question

Sanitization and output escaping missing in tab Upgrade to Pro

Closed this issue a year ago · 1 comments

The GN Publisher plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in versions up to, and including, 1.5.5 due to insufficient input sanitization and output escaping.

Ticket Ref: https://magazine3.in/conversation/105516?folder_id=25

Answer 1 · 2023-02-24T09:47:02.000Z

pushed in update 1.5.6