PHP_SELFish Part 2 – Reflected XSS in Easy Social Icons

September 29, 2021

Today’s post is part two of a two part blog post. It describes a cross site scripting vulnerability in the Easy Social Icons plugin that exploits the PHP_SELF variable. In yesterday’s post, we described another plugin, underConstruction, suffering from a similar vulnerability related to the use of PHP_SELF. On August 16, 2021, the Wordfence Threat …Read More
The post PHP_SELFish Part 2 – Reflected XSS in Easy Social Icons appeared first on Wordfence.WordfenceRead More