Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:22 p.m.8 views

CVE-2021-24600

The WP Dialog WordPress plugin through 1.2.5.5 does not sanitise and escape some of its settings before outputting them in pages, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS5.9AI score0.00617EPSS
Exploits2References1
OSV
OSV
added 2021/09/20 10:15 a.m.5 views

CVE-2021-24600

The WP Dialog WordPress plugin through 1.2.5.5 does not sanitise and escape some of its settings before outputting them in pages, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS5.8AI score0.00617EPSS
Exploits2References1
NVD
NVD
added 2021/09/20 10:15 a.m.11 views

CVE-2021-24600

The WP Dialog WordPress plugin through 1.2.5.5 does not sanitise and escape some of its settings before outputting them in pages, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS0.00617EPSS
Exploits2References1
CVE
CVE
added 2021/09/20 10:6 a.m.57 views

CVE-2021-24600

CVE-2021-24600 affects the WordPress WP Dialog plugin (

4.8CVSS4.7AI score0.00617EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2021/09/20 10:6 a.m.18 views

CVE-2021-24600 WP Dialog <= 1.2.5.5 - Authenticated Stored Cross-Site Scripting

The WP Dialog WordPress plugin through 1.2.5.5 does not sanitise and escape some of its settings before outputting them in pages, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

5AI score0.00617EPSS
Exploits2References1
Rows per page
Query Builder