Lucene search
Purine chuWPEX-ID:BB20D732-A5E4-4140-AB51-B2AA1A53DB12HistoryMar 14, 2021 - 12:00 a.m.
Social Slider Widget < 1.8.5 - Authenticated Reflected Cross-Site Scripting (XSS)
2021-03-1400:00:00
purine chu
271
0.001 Low
EPSS
Percentile
21.8%
The plugin allowed Authenticated Reflected XSS in the plugin settings page as the ‘token_error’ parameter can be controlled by users and it is directly echoed without being sanitized
/wp-admin/admin.php?page=settings-wisw&token_error=<script>alert(/XSS/);</script>Related
prion
prion
Cross site scripting
2021-04-05 19:15:00
cvelist
cvelist
wpvulndb
wpvulndb
nvd
nvd
CVE-2021-24196
2021-04-05 19:15:16
patchstack
patchstack
cve
cve
CVE-2021-24196
2021-04-05 19:15:16