5 matches found
WordPress WHMCS Bridge <6.4b - Cross-Site Scripting
WordPress WHMCS Bridge plugin before 6.4b contains a reflected cross-site scripting vulnerability. It does not sanitize and escape the error parameter before outputting it back in the admin dashboard. id: CVE-2021-25112 info: name: WordPress WHMCS Bridge 6.4b - Cross-Site Scripting author:...
CVE-2021-25112
creationtimestamp| type| source ---|---|--- 2023-04-27 09:58:59+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-25112.yaml...
CVE-2021-25112
The WHMCS Bridge WordPress plugin before 6.4b does not sanitise and escape the error parameter before outputting it back in admin dashboard, leading to a Reflected Cross-Site Scripting...
CVE-2021-25112 WHMCS Bridge < 6.4b - Reflected Cross-Site Scripting (XSS)
The WHMCS Bridge WordPress plugin before 6.4b does not sanitise and escape the error parameter before outputting it back in admin dashboard, leading to a Reflected Cross-Site Scripting...
CVE-2021-25112
The CVE-2021-25112 entry concerns the WordPress WHMCS Bridge plugin (before 6.4b) and a Reflected Cross-Site Scripting vulnerability caused by not sanitising/escaping the error parameter before echoing it in the admin dashboard. Affected component: WHMCS Bridge plugin for WordPress; root cause: i...