Lucene search

K
prionPRIOn knowledge basePRION:CVE-2021-24415
HistoryOct 18, 2021 - 2:15 p.m.

Cross site scripting

2021-10-1814:15:00
PRIOn knowledge base
www.prio-n.com
3

0.001 Low

EPSS

Percentile

22.7%

The Polo Video Gallery – Best wordpress video gallery plugin WordPress plugin through 1.2 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode

CPENameOperatorVersion
polo_video_galleryle1.2

0.001 Low

EPSS

Percentile

22.7%

Related for PRION:CVE-2021-24415