← back
CVE-2021-24338

Pods < 2.7.27 - Authenticated Stored Cross-Site Scripting (XSS)

EPSS 0.8%CWE-79
The Pods – Custom Content Types and Fields WordPress plugin before 2.7.27 was vulnerable to an Authenticated Stored Cross-Site Scripting (XSS) security vulnerability within the 'Singular Label' field parameter.
Affected products
Pods Framework Team · Pods – Custom Content Types and Fields

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://wpscan.com/vulnerability/d5b015f3-90c7-4d51-a71d-630d60965151https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-24338