Source |
CVE Liste |
Identifiant |
3628934 |
Date de publication |
2021-11-08 18:15:09 (vue: 2021-11-08 20:05:55) |
Titre |
CVE-2021-24701 |
Texte |
The Quiz Tool Lite WordPress plugin through 2.3.15 does not sanitize multiple input fields used when creating or managing quizzes and in other setting options, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed. |
Envoyé |
Oui |
Condensat |
2021 24701 allowing attacks capability creating cross cve disallowed does even fields high html input lite managing multiple not options other perform plugin privilege quiz quizzes sanitize scripting setting site through tool unfiltered used users when wordpress |
Tags |
Tool
|
Stories |
|
Notes |
|
Move |
|