← voltar
CVE-2021-24156

Testimonial Rotator <= 3.0.3 - Authenticated Stored Cross-Site Scripting

EPSS 0.7%CWE-79
Stored Cross-Site Scripting vulnerabilities in Testimonial Rotator 3.0.3 allow low privileged users (Contributor) to inject arbitrary JavaScript code or HTML without approval. This could lead to privilege escalation
Produtos afetados
Unknown · Testimonial Rotator

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://mega.nz/file/ftVSmRCC#ctqUg89CKszEuLO3eeQVazUStTPvoQD6LlbWNSMa7uAhttps://wpscan.com/vulnerability/8b6f4a77-4008-4730-9a91-fa055a8b3e68