Lucene search
WPScanCVELIST:CVE-2021-24785HistoryOct 25, 2021 - 1:20 p.m.
CVE-2021-24785 Great Quotes <= 1.0.0 - Admin+ Stored Cross-Site Scripting
2021-10-2513:20:57
CWE-79
WPScan
www.cve.org
The Great Quotes WordPress plugin through 1.0.0 does not sanitise and escape the Quote and Author fields of its Quotes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed.
CNA Affected
[
{
"product": "Great Quotes",
"vendor": "Unknown",
"versions": [
{
"lessThanOrEqual": "1.0.0",
"status": "affected",
"version": "1.0.0",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site scripting
2021-10-25 14:15:00
wpexploit
wpexploit
Great Quotes <= 1.0.0 - Admin+ Stored Cross-Site Scripting
2021-09-27 00:00:00
cve
cve
CVE-2021-24785
2021-10-25 14:15:10
nvd
nvd
CVE-2021-24785
2021-10-25 14:15:10
wpvulndb
wpvulndb
Great Quotes <= 1.0.0 - Admin+ Stored Cross-Site Scripting
2021-09-27 00:00:00
nessus
nessus
Tenable SecurityCenter < 5.21.0 Multiple Vulnerabilities (TNS-2022-09)
2022-05-10 00:00:00