Source |
CVE Liste |
Identifiant |
3919277 |
Date de publication |
2022-01-03 13:15:08 (vue: 2022-01-03 16:06:39) |
Titre |
CVE-2021-24828 |
Texte |
The Mortgage Calculator / Loan Calculator WordPress plugin before 1.5.17 does not escape the some of the attributes of its mlcalc shortcode before outputting them, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks |
Envoyé |
Oui |
Condensat |
2021 24828 allow attacks attributes before calculator contributor could cross cve does escape its loan low mlcalc mortgage not outputting perform plugin role scripting shortcode site some them users which wordpress |
Tags |
|
Stories |
|
Notes |
|
Move |
|