3 matches found
CVE-2021-24723
The WP Reactions Lite WordPress plugin before 1.3.6 does not properly sanitize inputs within wp-admin pages, allowing users with sufficient access to inject XSS payloads within /wp-admin/ pages...
CVE-2021-24723
CVE-2021-24723 concerns the WordPress WP Reactions Lite plugin prior to 1.3.6, where input sanitization failures in wp-admin pages allow an authenticated user to inject XSS payloads. The vulnerability is described as an authenticated stored XSS with access limited to sufficient privileges for edi...
CVE-2021-24723 WP Reactions Lite < 1.3.6 - Authenticated Stored Cross Site Scripting
The WP Reactions Lite WordPress plugin before 1.3.6 does not properly sanitize inputs within wp-admin pages, allowing users with sufficient access to inject XSS payloads within /wp-admin/ pages...