CVE-2021-24136
Testimonials Widget < 4.0.0 - Multiple Authenticated Stored XSS
Unvalidated input and lack of output encoding in the Testimonials Widget WordPress plugin, versions before 4.0.0, lead to multiple Cross-Site Scripting vulnerabilities, allowing remote attackers to inject arbitrary JavaScript code or HTML via the below parameters: - Author - Job Title - Location - Company - Email - URL
Productos afectados
Unknown · Testimonials Widget¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →