CVE-2021-24423

The UpdraftPlus WordPress Backup Plugin WordPress plugin before 1.6.59 does not sanitise its updraft_service settings, allowing high privilege users to set malicious JavaScript payload in it and leading to a Stored Cross-Site Scripting issue
Configurations

Configuration 1

cpe:2.3:a:updraftplus:updraftplus:*:*:*:*:*:wordpress:*:*

Information

Published : 2022-01-24 08:15

Updated : 2022-01-27 04:31


NVD link : CVE-2021-24423

Mitre link : CVE-2021-24423

Products Affected
No products.
CWE