Lucene search
PRIOn knowledge basePRION:CVE-2021-24614HistorySep 13, 2021 - 6:15 p.m.
Cross site scripting
2021-09-1318:15:00
PRIOn knowledge base
www.prio-n.com
0.001 Low
EPSS
Percentile
24.8%
The Book appointment online WordPress plugin before 1.39 does not sanitise or escape Service Prices before outputting it in the List, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
| CPE | Name | Operator | Version |
|---|---|---|---|
| book_appointment_online | lt | 1.39 |
Related
wpvulndb
wpvulndb
cve
cve
CVE-2021-24614
2021-09-13 18:15:17
nvd
nvd
CVE-2021-24614
2021-09-13 18:15:17
wpexploit
wpexploit
cvelist
cvelist
patchstack
patchstack