mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-30 04:49:42 +00:00
767 B
767 B
CVE-2021-24854
&color=brighgreen)
Description
The QR Redirector WordPress plugin before 1.6.1 does not sanitise and escape some of the QR Redirect fields, which could allow users with a role as low as Contributor perform Stored Cross-Site Scripting attacks.
POC
Reference
Github
No PoCs found on GitHub currently.