2 matches found
CVE-2021-24576
The Easy Accordion WordPress plugin before 2.0.22 does not properly sanitize inputs when adding new items to an accordion...
WordPress 插件 跨站脚本漏洞
WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. A cross-site scripting vulnerability exists in versions prior to WordPress Easy Accordion plugin 2.0.22, which stems from a lack of validation and escaping of input by the software when adding ne...