The Jannah WordPress theme before 5.4.5 did not properly sanitize the 'query' POST parameter in its tie_ajax_search AJAX action, leading to a Reflected Cross-site Scripting (XSS) vulnerability.CreditsTruoc Phan from Techlab CorporationReferenceshttps://wpscan.com/vulnerability/fba9f010-1202-4eea-a6f5-78865c084153
