CVE-2021-24489

The Request a Quote WordPress plugin before 2.3.5 does not sanitise, validate or escape some of its settings in the admin dashboard, leading to authenticated Stored Cross-Site Scripting issues even when the unfiltered_html capability is disallowed.
References
Configurations

Configuration 1

cpe:2.3:a:emarketdesign:request_a_quote:*:*:*:*:*:wordpress:*:*

Information

Published : 2021-10-25 02:15

Updated : 2021-10-28 02:30


NVD link : CVE-2021-24489

Mitre link : CVE-2021-24489

Products Affected
No products.
CWE