vulnerability

WordPress Plugin: all-in-one-wp-security-and-firewall: CVE-2020-29171: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Try Surface Command
Back to search
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Dec 24, 2020
Added
May 15, 2025
Modified
May 15, 2025

Description

Cross-site scripting (XSS) vulnerability in admin/wp-security-blacklist-menu.php in the Tips and Tricks HQ All In One WP Security and Firewall (all-in-one-wp-security-and-firewall) plugin before 4.4.6 for WordPress.

Solution

all-in-one-wp-security-and-firewall-plugin-cve-2020-29171

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today