5 matches found
WordPress Stop Spammers 2021.8 Plugin - (log) Reflected Cross-site Scripting Vulnerability
Exploit Title: WordPress Plugin Stop Spammers 2021.8 - 'log' Reflected Cross-site Scripting XSS Exploit Author: Hosein Vita Vendor Homepage: https://wordpress.org/plugins/stop-spammer-registrations-plugin/ Software Link: https://downloads.wordpress.org/plugin/stop-spammer-registrations-plugin.zip...
WordPress Plugin Stop Spammers 2021.8 - 'log' Reflected Cross-site Scripting (XSS)
Exploit Title: WordPress Plugin Stop Spammers 2021.8 - 'log' Reflected Cross-site Scripting XSS Date: 04/08/2021 Exploit Author: Hosein Vita Vendor Homepage: https://wordpress.org/plugins/stop-spammer-registrations-plugin/ Software Link:...
CVE-2021-24245
The Stop Spammers WordPress plugin before 2021.9 did not escape user input when blocking requests such as matching a spam word, outputting it in an attribute after sanitising it to remove HTML tags, which is not sufficient and lead to a reflected Cross-Site Scripting issue...
CVE-2021-24245
The CVE-2021-24245 entry pertains to the WordPress Stop Spammers plugin (pre-2021.9). A reflected XSS exists because the plugin does not properly escape user input when blocking requests, outputting the input in an attribute after filtering HTML tags. This leads to potential script injection in p...
CVE-2021-24245 Stop Spammers < 2021.9 - Reflected Cross-Site Scripting (XSS)
The Stop Spammers WordPress plugin before 2021.9 did not escape user input when blocking requests such as matching a spam word, outputting it in an attribute after sanitising it to remove HTML tags, which is not sufficient and lead to a reflected Cross-Site Scripting issue...