CVE

CVE-2021-24510

admin

CVE-2021-24510

The MF Gig Calendar WordPress plugin through 1.1 does not sanitise or escape the id GET parameter before outputting back in the admin dashboard when editing an Event, leading to a reflected Cross-Site Scripting issue

Source: CVE-2021-24510

Exit mobile version