mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 17:22:02 +00:00
878 B
878 B
CVE-2021-25034
&color=brighgreen)
Description
The WP User WordPress plugin before 7.0 does not sanitise and escape some parameters in pages where the [wp_user] shortcode is used, leading to Reflected Cross-Site Scripting issues
POC
Reference
- https://wpscan.com/vulnerability/c4e50dd2-450f-413d-b15f-ece413e42157
- https://wpscan.com/vulnerability/c4e50dd2-450f-413d-b15f-ece413e42157
Github
No PoCs found on GitHub currently.