CVE-2021-24898 in EditableTable PluginИнформация

Сводка

по MITRE • 28.02.2022

The EditableTable WordPress plugin through 0.1.4 does not sanitise and escape any of the Table and Column fields, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed

Be aware that VulDB is the high quality source for vulnerability data.

Резервировать

14.01.2021

Раскрытие

28.02.2022

Модерация

принято

Вход

VDB-193940

EPSS

0.00588

KEV

Нет

Деятельности

Очень низкий

Сектор

Hostingprovider

Источники

Interested in the pricing of exploits?

See the underground prices here!