CVE-2021-24702
LearnPress < 4.1.3.1 - Multiple Admin+ Stored Cross-Site Scripting
The LearnPress WordPress plugin before 4.1.3.1 does not properly sanitize or escape various inputs within course settings, which could allow high privilege users to perform Cross-Site Scripting attacks when the unfiltred_html capability is disallowed
Productos afectados
Unknown · LearnPress – WordPress LMS Plugin¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →