mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-01 20:05:09 +02:00
marc
804 B
804 B
CVE-2021-24764
Description
The Perfect Survey WordPress plugin before 1.5.2 does not sanitise and escape multiple parameters (id and filters[session_id] of single_statistics page, type and message of importexport page) before outputting them back in pages/attributes in the admin dashboard, leading to Reflected Cross-Site Scripting issues
POC
Reference
Github
No PoCs found on GitHub currently.