4 matches found
CVE-2021-24127
creationtimestamp| type| source ---|---|--- 2021-03-18 17:32:28+00:00| seen| https://t.me/cibsecurity/25108...
CVE-2021-24127
Unvalidated input and lack of output encoding in the ThirstyAffiliates Affiliate Link Manager WordPress plugin, versions before 3.9.3, was vulnerable to authenticated Stored Cross-Site Scripting XSS, which could lead to privilege escalation...
CVE-2021-24127
The CVE-2021-24127 entry affects the WordPress plugin ThirstyAffiliates Affiliate Link Manager, versions before 3.9.3. The issue is an authenticated Stored Cross-Site Scripting (XSS) caused by unvalidated input and lack of output encoding in the plugin, with potential privilege escalation as desc...
CVE-2021-24127 ThirstyAffiliates < 3.9.3 - Authenticated Stored XSS
Unvalidated input and lack of output encoding in the ThirstyAffiliates Affiliate Link Manager WordPress plugin, versions before 3.9.3, was vulnerable to authenticated Stored Cross-Site Scripting XSS, which could lead to privilege escalation...