RSS   Podatności dla 'Inspirational quote rotator'   RSS

2021-12-13
 
CVE-2021-24771

CWE-79
 

 
The Inspirational Quote Rotator WordPress plugin through 1.0.0 does not sanitize and escape some of its quote fields when adding/editing a quote as admin, leading to Stored Cross-Site scripting issues when the quote is output in the "Quotes list" even when the unfiltered_html capability is disallowed

 


Copyright 2024, cxsecurity.com

 

Back to Top