mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-29 16:29:28 +02:00
0xMarcio
898 B
898 B
CVE-2021-24423
&color=brighgreen)
Description
The UpdraftPlus WordPress Backup Plugin WordPress plugin before 1.6.59 does not sanitise its updraft_service settings, allowing high privilege users to set malicious JavaScript payload in it and leading to a Stored Cross-Site Scripting issue
POC
Reference
- https://wpscan.com/vulnerability/541974d6-2df8-4497-9aee-afd3b9024102
- https://wpscan.com/vulnerability/541974d6-2df8-4497-9aee-afd3b9024102
Github
No PoCs found on GitHub currently.