Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2021-24410
HistoryAug 16, 2021 - 11:15 a.m.

Cross site request forgery (csrf)

2021-08-1611:15:00
PRIOn knowledge base
www.prio-n.com
5

0.001 Low

EPSS

Percentile

28.3%

JSON

The తెల�గ� బైబిల� వచనమ�ల� WordPress plugin through 1.0 is lacking any CSRF check when saving its settings and verses, and do not sanitise or escape them when outputting them back in the page. This could allow attackers to make a logged in admin change the settings, as well as add malicious verses containing JavaScript code in them, leading to Stored XSS issues

CPENameOperatorVersion
telugu_bible_verse_dailyle1.0

Related

nvd 1
cve 1
cvelist 1
wpvulndb 1
wpexploit 1
nvd
nvd
CVE-2021-24410
2021-08-16 11:15:08
cve
cve
CVE-2021-24410
2021-08-16 11:15:08
cvelist
cvelist
CVE-2021-24410 Telugu Bible Verse Daily <= 1.0 - CSRF to Stored XSS
2021-08-16 10:48:19
wpvulndb
wpvulndb
Telugu Bible Verse Daily <= 1.0 - CSRF to Stored XSS
2021-07-19 00:00:00
wpexploit
wpexploit
Telugu Bible Verse Daily <= 1.0 - CSRF to Stored XSS
2021-07-19 00:00:00

0.001 Low

EPSS

Percentile

28.3%

JSON
Related for PRION:CVE-2021-24410
nvd1cve1cvelist1wpvulndb1wpexploit1