3 matches found
CVE-2021-43409
The “WPO365 | LOGIN” WordPress plugin up to and including version 15.3 by wpo365.com is vulnerable to a persistent Cross-Site Scripting XSS vulnerability also known as Stored or Second-Order XSS. Persistent XSS vulnerabilities occur when the application stores and retrieves client supplied data...
CVE-2021-43409
The CVE-2021-43409 entry concerns the WordPress WPO365 | LOGIN plugin (≤15.3) with a persistent (stored/second-order) XSS flaw. The vulnerability allows anonymous submission of malicious script that is stored and later executed when an administrator authenticates to the WordPress Dashboard. The a...
CVE-2021-43409 WPO365 | LOGIN - Wordpress Plugin Persistent Cross-Site Scripting
The “WPO365 | LOGIN” WordPress plugin up to and including version 15.3 by wpo365.com is vulnerable to a persistent Cross-Site Scripting XSS vulnerability also known as Stored or Second-Order XSS. Persistent XSS vulnerabilities occur when the application stores and retrieves client supplied data...