CVE-2021-24543

Posted on by admin

CVE-2021-24543

The jQuery Reply to Comment WordPress plugin through 1.31 does not have any CSRF check when saving its settings, nor sanitise or escape its ‘Quote String’ and ‘Reply String’ settings before outputting them in Comments, leading to a Stored Cross-Site Scripting issue.

Source: CVE-2021-24543

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다