2 matches found
CVE-2021-24418
The CVE-2021-24418 entry concerns the WordPress plugin “Smooth Scroll Page Up/Down Buttons” (version
CVE-2021-24418 Smooth Scroll Page Up/Down Buttons <= 1.4 - Authenticated Stored XSS via psb_positioning
The Smooth Scroll Page Up/Down Buttons WordPress plugin through 1.4 does not properly sanitise and validate its psbpositioning settings, allowing high privilege users such as admin to set an XSS payload in it, which will be executed in all pages of the blog...