RSS   Vulnerabilities for 'Advanced iframe'   RSS

2022-03-07
 
CVE-2021-24953

CWE-79
 

 
The Advanced iFrame WordPress plugin before 2022 does not sanitise and escape the ai_config_id parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting issue

 

 >>> Vendor: Tinywebgallery 2 Products
Tinywebgallery
Advanced iframe


Copyright 2022, cxsecurity.com

 

Back to Top