CVE-2021-24478
The Bookshelf WordPress plugin through 2.0.4 does not sanitise or escape its "Paypal email address" setting before outputting it in the page, leading to an authenticated Stored Cross-Site Scripting issue
5.4CVSS
5.2AI Score
0.001EPSS