Source |
CVE Liste |
Identifiant |
3628935 |
Date de publication |
2021-11-08 18:15:09 (vue: 2021-11-08 20:05:55) |
Titre |
CVE-2021-24706 |
Texte |
The Qwizcards – online quizzes and flashcards WordPress plugin before 3.62 does not properly sanitize and escape some of its settings, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed. |
Envoyé |
Oui |
Condensat |
2021 24706 allowing attacks before capability cross cve disallowed does escape even flashcards high html its not online perform plugin privilege properly quizzes qwizcards sanitize scripting settings site some unfiltered users when wordpress ã¢â‚¬â€œ |
Tags |
|
Stories |
|
Notes |
|
Move |
|