RSS   Vulnerabilities for 'Coming soon'   RSS

2022-04-25
 
CVE-2021-46781

CWE-79
 

 
The Coming Soon by Supsystic WordPress plugin before 1.7.6 does not sanitise and escape the tab parameter before outputting it back in an attribute in the admin dashboard, leading to a Reflected Cross-Site Scripting

 


Copyright 2024, cxsecurity.com

 

Back to Top