RSS   Vulnerabilities for 'Scroll top'   RSS

2021-08-23
 
CVE-2021-24564

CWE-79
 

 
The WPFront Scroll Top WordPress plugin before 2.0.6.07225 does not sanitise or escape its Image ALT setting before outputting it attributes, leading to an Authenticated Stored Cross-Site Scripting issues even when the unfiltered_html capability is disallowed.

 

 >>> Vendor: Wpfront 3 Products
Notification bar
Scroll top
Wpfront notification bar


Copyright 2024, cxsecurity.com

 

Back to Top