CVE-2022-4369

Name of the Vulnerable Software and Affected Versions WP-Lister Lite for Amazon WordPress plugin versions prior to 2.4.4

Description The issue is related to a Reflected Cross-Site Scripting that can be used against high-privilege users such as admin. This occurs because the plugin does not properly sanitize and escape a parameter before outputting it back in the page.

Recommendations For WP-Lister Lite for Amazon WordPress plugin versions prior to 2.4.4, update to version 2.4.4 or later to resolve the issue.