mirror of
https://github.com/0xMarcio/cve.git
synced 2026-06-01 06:51:35 +02:00
0xMarcio
867 B
867 B
CVE-2021-24515
&color=brighgreen)
Description
The Video Gallery WordPress plugin before 1.1.5 does not escape the Title and Description of the videos in a gallery before outputting them in attributes, leading to Stored Cross-Site Scripting issues
POC
Reference
- https://wpscan.com/vulnerability/6bbea7fe-e966-406b-ad06-0206fcc6f0a0
- https://wpscan.com/vulnerability/6bbea7fe-e966-406b-ad06-0206fcc6f0a0
Github
No PoCs found on GitHub currently.