CVE-2019-17239 – Download Plugins and Themes from Dashboard <= 1.5.0 - Unauthenticated Stored Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2019-17239

includes/settings/class-alg-download-plugins-settings.php in the download-plugins-dashboard plugin through 1.5.0 for WordPress has multiple unauthenticated stored XSS issues. El archivo includes/settings/class-alg-download-plugins-settings.php en el plugin download-plugins-dashboard versiones hasta 1.5.0 para WordPress, presenta múltiples problemas de tipo XSS almacenado no autenticado. • https://wordpress.org/plugins/download-plugins-dashboard/#developers https://wpvulndb.com/vulnerabilities/9896 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •