CVE-2021-24607
Storefront Footer Text <= 1.0.1 - Admin+ Stored Cross-Site Scripting
The Storefront Footer Text WordPress plugin through 1.0.1 does not sanitize and escape the "Footer Credit Text" added to pages, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered-html capability is disallowed.
Productos afectados
Unknown · Storefront Footer Text¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →