Descrição
The Inspirational Quote Rotator WordPress plugin through 1.0.0 does not sanitize and escape some of its quote fields when adding/editing a quote as admin, leading to Stored Cross-Site scripting issues when the quote is output in the “Quotes list” even when the unfiltered_html capability is disallowed
Software
Não informado
Tipo Software
Plugin
CVE
CVE-2021-24771
Tags
Nâo informado
Data de publicação
13/12/2021
Última atualização
08/12/2024
Pontuação em CVSS 3.0
4.8
Médio