Lucene search
PRIOn knowledge basePRION:CVE-2021-24246HistoryMay 06, 2021 - 1:15 p.m.
Cross site scripting
2021-05-0613:15:00
PRIOn knowledge base
www.prio-n.com
5
0.001 Low
EPSS
Percentile
24.8%
The Workscout Core WordPress plugin before 1.3.4, used by the WorkScout Theme did not sanitise the chat messages sent via the workscout_send_message_chat AJAX action, leading to Stored Cross-Site Scripting and Cross-Frame Scripting issues
| CPE | Name | Operator | Version |
|---|---|---|---|
| workscout | lt | 2.0.33 | |
| workscout_core | lt | 1.3.4 |
Related
cvelist
cvelist
CVE-2021-24246 WorkScout Core < 1.3.4 - Authenticated Stored XSS & XFS
2021-05-05 18:39:43
nvd
nvd
CVE-2021-24246
2021-05-06 13:15:11
cve
cve
CVE-2021-24246
2021-05-06 13:15:11
wpvulndb
wpvulndb
WorkScout Core < 1.3.4 - Authenticated Stored XSS & XFS
2021-04-08 00:00:00
wpexploit
wpexploit
WorkScout Core < 1.3.4 - Authenticated Stored XSS & XFS
2021-04-08 00:00:00