CVE-2021-24599

The Email Encoder – Protect Email Addresses WordPress plugin before 2.1.2 has an endpoint that requires no authentication and will render a user supplied value in the HTML response without escaping or sanitizing the data.
References
Configurations

Configuration 1

cpe:2.3:a:wp-webhooks:email_encoder:*:*:*:*:*:wordpress:*:*

Information

Published : 2021-09-06 11:15

Updated : 2021-09-10 08:17


NVD link : CVE-2021-24599

Mitre link : CVE-2021-24599

Products Affected
No products.
CWE