4 matches found
CVE-2021-24648
The RegistrationMagic WordPress plugin before 5.0.1.9 does not sanitise and escape the rmsearchvalue parameter before outputting back in an attribute, leading to a Reflected Cross-Site Scripting...
CVE-2021-24648
The RegistrationMagic WordPress plugin before 5.0.1.9 does not sanitise and escape the rmsearchvalue parameter before outputting back in an attribute, leading to a Reflected Cross-Site Scripting...
CVE-2021-24648
The RegistrationMagic WordPress plugin before 5.0.1.9 does not sanitise and escape the rmsearchvalue parameter before outputting back in an attribute, leading to a Reflected Cross-Site Scripting...
CVE-2021-24648
The CVE-2021-24648 affects the WordPress plugin RegistrationMagic prior to 5.0.1.9. The vulnerability arises because the rm_search_value parameter is not properly sanitized/escaped before being output in an attribute, enabling a Reflected Cross-Site Scripting (XSS) vulnerability. Affected softwar...