Stored Cross-site Scripting (XSS) vulnerability in Event Geek plugi
Reporter | Title | Published | Views | Family All 6 |
---|---|---|---|---|
![]() | Event Geek <= 2.5.2 - Stored Cross-site Scripting (XSS) | 28 Jun 202100:00 | – | wpvulndb |
![]() | CVE-2021-24480 | 2 Aug 202111:15 | – | cve |
![]() | CVE-2021-24480 | 2 Aug 202111:15 | – | nvd |
![]() | CVE-2021-24480 Event Geek <= 2.5.2 - Stored Cross-site Scripting (XSS) | 2 Aug 202110:32 | – | cvelist |
![]() | Cross site scripting | 2 Aug 202111:15 | – | prion |
![]() | WordPress The Event Geek plugin cross-site scripting vulnerability | 5 Aug 202100:00 | – | cnvd |
As admin, put the following payload in the "Use your own theme (enter URL):" option (wp-admin/edit.php?post_type=gg_events&page=gg_event_menu) of the plugin: "><script>alert(/XSS/)</script>
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo