PT-2021-16063 · WordPress · Jquery Reply To Comment

Name of the Vulnerable Software and Affected Versions: jQuery Reply to Comment WordPress plugin versions 1.31 and earlier Description: The issue concerns a Stored Cross-Site Scripting problem. It arises because the plugin lacks a CSRF check when saving its settings and does not properly sanitise ...

Cross-Site Scripting (XSS)

anchorcms/anchor-cms is vulnerable to cross-site scripting XSS attacks. These attacks are possible because the comment output from commenttext is not filtered and encoded properly, allowing a malicious user to inject and execute arbitrary web script through it...