RSS   Vulnerabilities for 'Request a quote'   RSS

2021-10-25
 
CVE-2021-24489

CWE-79
 

 
The Request a Quote WordPress plugin before 2.3.5 does not sanitise, validate or escape some of its settings in the admin dashboard, leading to authenticated Stored Cross-Site Scripting issues even when the unfiltered_html capability is disallowed.

 

 >>> Vendor: Emarketdesign 3 Products
Request a quote
Customer service software \& support ticket system
Best contact management software


Copyright 2024, cxsecurity.com

 

Back to Top