CVE-2022-2655 Information

Description

The Classified Listing Pro WordPress plugin before 2.0.20 does not escape a generated URL before outputting it back in an attribute in an admin page leading to a Reflected Cross-Site Scripting

Reference

https://wpscan.com/vulnerability/acc9675a-56f6-411a-9594-07144c2aad1b