[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fq01BfMAGorXpi2EniQFCDUzR-CcnlDFdyDambHcmVRc":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"WF-28bdad82-f09a-461f-b826-3f458f121fea-bck-tu-dong-xac-nhan-thanh-toan-chuyen-khoan-ngan-hang","thanh-ton-qut-m-qr-code-t-ng-momo-viettelpay-vnpay-v-40-ngn-hng-vit-nam-cross-site-scripting","Thanh Toán Quét Mã QR Code Tự Động – MoMo, ViettelPay, VNPay và 40 ngân hàng Việt Nam \u003C= 2.0.0 - Cross-Site Scripting","The Thanh Toán Quét Mã QR Code Tự Động – MoMo, ViettelPay, VNPay và 40 ngân hàng Việt Nam plugin for WordPress is vulnerable to Cross-Site Scripting in versions up to an including 2.0.0. This is due to missing input sanitization and escaping on several parameters that make it possible for attackers to inject arbitrary web scripts in web pages that execute when users access those pages.","bck-tu-dong-xac-nhan-thanh-toan-chuyen-khoan-ngan-hang",null,"\u003C=2.0.0","2.0.1","high",7.2,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2022-05-10 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F28bdad82-f09a-461f-b826-3f458f121fea?source=api-prod",623]