4 matches found
CVE-2021-36910
Authenticated admin user role Stored Cross-Site Scripting XSS in WP-Appbox WordPress plugin = 4.3.20...
CVE-2021-36910
Authenticated admin user role Stored Cross-Site Scripting XSS in WP-Appbox WordPress plugin = 4.3.20...
CVE-2021-36910
This CVE affects the WordPress WP-Appbox plugin up to version 4.3.20, with an authenticated (admin) stored XSS vulnerability in the plugin’s settings. The root cause involves insufficient sanitization/escaping for certain plugin settings, allowing a high-privilege user to inject scripts that are ...
CVE-2021-36910 WordPress WP-Appbox plugin <= 4.3.20 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
Authenticated admin user role Stored Cross-Site Scripting XSS in WP-Appbox WordPress plugin = 4.3.20...