0.001 Low
EPSS
Percentile
44.8%
Stored Cross-Site Scripting (XSS) vulnerability discovered by AppCheck in WordPress WPO365 plugin (versions <= 15.3).
Update the WordPress WPO365 plugin to the latest available version (at least 15.4).
appcheck-ng.com/wordpress-microsoft-office-365-azure-ad-login-persistent-cross-site-scripting/
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43409
wordpress.org/plugins/wpo365-login/#developers