CVEs-PoC/2021/CVE-2021-24924.md at ba290685fe22de220a539dbecbe46bd650f1a0d5

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-02-12 22:53:11 +00:00

Files

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

809 B

Raw Blame History

CVE-2021-24924

Description

The Email Log WordPress plugin before 2.4.8 does not escape the d parameter before outputting it back in an attribute in the Log page, leading to a Reflected Cross-Site Scripting issue

POC

Reference

https://wpscan.com/vulnerability/4621e86e-aba4-429c-8e08-32cf9b4c65e6
https://wpscan.com/vulnerability/4621e86e-aba4-429c-8e08-32cf9b4c65e6

Github

No PoCs found on GitHub currently.

809 B Raw Blame History

CVE-2021-24924

Description

POC

Reference

Github

809 B

Raw Blame History