Lucene search
PRIOn knowledge basePRION:CVE-2021-24813HistoryNov 01, 2021 - 9:15 a.m.
Cross site scripting
2021-11-0109:15:00
PRIOn knowledge base
www.prio-n.com
2
0.001 Low
EPSS
Percentile
21.4%
The Events Made Easy WordPress plugin before 2.2.24 does not sanitise and escape Custom Field Names, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
| CPE | Name | Operator | Version |
|---|---|---|---|
| events_made_easy | lt | 2.2.24 |
Related
patchstack
patchstack
wpexploit
wpexploit
Events Made Easy < 2.2.24 - Admin+ Stored Cross-Site Scripting
2021-10-04 00:00:00
nvd
nvd
CVE-2021-24813
2021-11-01 09:15:09
cvelist
cvelist
wpvulndb
wpvulndb
Events Made Easy < 2.2.24 - Admin+ Stored Cross-Site Scripting
2021-10-04 00:00:00
cve
cve
CVE-2021-24813
2021-11-01 09:15:09