0.001 Low
EPSS
Percentile
24.8%
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by m0ze in WordPress WP Reset plugin (versions <= 1.86).
Update the WordPress WP Reset plugin to the latest available version (at least 1.90).
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24424
m0ze.ru/vulnerability/[2021-05-26]-[WordPress]-[CWE-79]-WP-Reset-WordPress-Plugin-v1.86.txt
wordpress.org/plugins/wp-reset/#developers