Lucene search
WpvulndbWPVDB-ID:DA04B514-A561-4D25-95B8-1C7B5597F093HistoryMar 02, 2022 - 12:00 a.m.
MC4WP < 4.8.7 - Admin+ Stored Cross-Site Scripting
2022-03-0200:00:00
wpscan.com
18
mc4wp
plugin
vulnerability
admin+ stored cross-site scripting
form data
cross-site scripting
unfiltered_html
high privilege users
software
EPSS
0.001
Percentile
22.7%
The plugin does not properly sanitise form data, which could allow high privilege users to perform Cross-Site Scripting attacks when unfiltered_html is disallowed
Related
cve
cve
CVE-2021-36833
2022-05-20 20:15:09
prion
prion
Cross site scripting
2022-05-20 20:15:00
nvd
nvd
CVE-2021-36833
2022-05-20 20:15:09
openvas
openvas
WordPress MC4WP Plugin < 4.8.7 XSS Vulnerability
2023-04-28 00:00:00
patchstack
patchstack
cvelist
cvelist