The WP 2FA WordPress plugin had a problem before version 2.2.1 where data entered into an admin page was not checked or cleared of dangerous content before being displayed back on the page. This could allow someone to put malicious code on the page which could be used to harm other users or the website.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
