4 matches found
CVE-2021-24331
The Smooth Scroll Page Up/Down Buttons WordPress plugin before 1.4 did not properly sanitise and validate its settings, such as psbdistance, psbbuttonsize, psbspeed, only validating them client side. This could allow high privilege users such as admin to set XSS payloads in them...
CVE-2021-24331
The Smooth Scroll Page Up/Down Buttons WordPress plugin before 1.4 did not properly sanitise and validate its settings, such as psbdistance, psbbuttonsize, psbspeed, only validating them client side. This could allow high privilege users such as admin to set XSS payloads in them...
CVE-2021-24331
CVE-2021-24331 affects the WordPress plugin “Smooth Scroll Page Up/Down Buttons” (versions before 1.4). The root cause is improper sanitization/validation of settings (e.g., psb_distance, psb_buttonsize, psb_speed), with validation limited to the client side, enabling authenticated users (e.g., a...
CVE-2021-24331 Smooth Scroll Page Up/Down Buttons < 1.4 - Authenticated Stored XSS
The Smooth Scroll Page Up/Down Buttons WordPress plugin before 1.4 did not properly sanitise and validate its settings, such as psbdistance, psbbuttonsize, psbspeed, only validating them client side. This could allow high privilege users such as admin to set XSS payloads in them...