RSS   Vulnerabilities for 'Request a quote'   RSS

2021-07-12
 
CVE-2021-24420

CWE-79
 

 
The Request a Quote WordPress plugin before 2.3.4 did not sanitise and escape some of its quote fields when adding/editing a quote as admin, leading to Stored Cross-Site scripting issues when the quote is output in the 'All Quotes" table.

 


Copyright 2024, cxsecurity.com

 

Back to Top