CVE-2024-12772 Information

Description

The Ninja Tables WordPress plugin before 5.0.17 does not sanitize and escape a parameter before outputting it back in the page when importing a CSV leading to a Cross Site Scripting vulnerability.

Reference

https://wpscan.com/vulnerability/7b6d0f95-6632-4079-8c1b-517a8d02c330/