4 matches found
CVE-2021-25015
creationtimestamp| type| source ---|---|--- 2022-01-24 12:17:14+00:00| seen| https://t.me/cibsecurity/36107...
CVE-2021-25015
The myCred WordPress plugin before 2.4 does not sanitise and escape the search query before outputting it back in the history dashboard page, leading to a Reflected Cross-Site Scripting issue...
CVE-2021-25015 myCred < 2.4 - Reflected Cross-Site Scripting
The myCred WordPress plugin before 2.4 does not sanitise and escape the search query before outputting it back in the history dashboard page, leading to a Reflected Cross-Site Scripting issue...
CVE-2021-25015
The CVE-2021-25015 entry concerns the WordPress plugin myCred prior to version 2.4. The vulnerability is a Reflected Cross-Site Scripting (XSS) flaw caused by not sanitising/escaping the search query before echoing it back on the history dashboard page. Impact is client-side script execution via ...