5 matches found
CVE-2021-46780
The Easy Google Maps WordPress plugin before 1.9.32 does not escape the tab parameter before outputting it back in an attribute in the admin dashboard, leading to a Reflected Cross-Site Scripting...
CVE-2021-46780
The Easy Google Maps WordPress plugin before 1.9.32 does not escape the tab parameter before outputting it back in an attribute in the admin dashboard, leading to a Reflected Cross-Site Scripting...
CVE-2021-46780
The Easy Google Maps WordPress plugin before 1.9.32 does not escape the tab parameter before outputting it back in an attribute in the admin dashboard, leading to a Reflected Cross-Site Scripting...
CVE-2021-46780
The vulnerability CVE-2021-46780 affects the WordPress plugin Easy Google Maps (before 1.9.32). The issue is a Reflected Cross-Site Scripting (XSS) in the admin dashboard where the tab parameter is not escaped before output in an attribute, enabling injected script in some contexts. Mitigation: u...
CVE-2021-46780 Easy Google Maps < 1.9.32 - Reflected Cross-Site Scripting
The Easy Google Maps WordPress plugin before 1.9.32 does not escape the tab parameter before outputting it back in an attribute in the admin dashboard, leading to a Reflected Cross-Site Scripting...