2 matches found
CVE-2021-24335
The WordPress Car Repair Services & Auto Mechanic Theme (pre-4.0) contains a reflected Cross-Site Scripting (XSS) vulnerability in the serviceestimatekey parameter, which is echoed back in the page without proper sanitization. This could enable injection of malicious scripts when the parameter is...
WordPress 插件 跨站脚本漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...