CVE-2021-34663 in jQuery Tagline Rotator Plugin
Riassunto
di MITRE • 16/08/2021
The jQuery Tagline Rotator WordPress plugin is vulnerable to Reflected Cross-Site Scripting due to the use of $_SERVER['PHP_SELF'] in the ~/jquery-tagline-rotator.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 0.1.5.
If you want to get best quality of vulnerability data, you may have to visit VulDB.