3 matches found
CVE-2021-42365 Asgaros Forums <= 1.15.13 Authenticated Stored XSS
The Asgaros Forums WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the name parameter found in the /admin/tables/admin-structure-table.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to...
CVE-2021-42365
The CVE-2021-42365 entry concerns the Asgaros Forums WordPress plugin. Affected software: Asgaros Forums for WordPress (versions up to and including 1.15.13). Root cause: insufficient escaping of the name parameter in the admin-structure-table.php file, enabling Stored Cross-Site Scripting. Explo...
CVE-2021-42365 Asgaros Forums <= 1.15.13 Authenticated Stored XSS
The Asgaros Forums WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the name parameter found in the /admin/tables/admin-structure-table.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to...