cve/CVE-2021-25120.md at 93476d6c370e261fdc1b2b03a08066de45e4892d

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

The Easy Social Feed Free and Pro WordPress plugins before 6.2.7 do not sanitise some of their parameters used via AJAX actions before outputting them back in the response, leading to Reflected Cross-Site Scripting issues

POC

Reference

https://wpscan.com/vulnerability/0ad020b5-0d16-4521-8ea7-39cd206ab9f6

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/ARPSyndicate/kenzer-templates

1.0 KiB Raw Blame History

CVE-2021-25120

Description

POC

Reference

Github

1.0 KiB

Raw Blame History