CVEs-PoC/2021/CVE-2021-24543.md at 52f3262c8d52545fc4e20c2a38454fc446c51385

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-28 03:02:23 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

The jQuery Reply to Comment WordPress plugin through 1.31 does not have any CSRF check when saving its settings, nor sanitise or escape its 'Quote String' and 'Reply String' settings before outputting them in Comments, leading to a Stored Cross-Site Scripting issue.

POC

Reference

https://wpscan.com/vulnerability/aa23f743-811b-4fd1-81a9-42916342e312
https://wpscan.com/vulnerability/aa23f743-811b-4fd1-81a9-42916342e312

Github

No PoCs found on GitHub currently.

1.0 KiB Raw Blame History

CVE-2021-24543

Description

POC

Reference

Github

1.0 KiB

Raw Blame History