CVE-2021-24922

CVE-2021-24922

The Pixel Cat WordPress plugin before 2.6.2 does not have CSRF check when saving its settings, and did not sanitise as well as escape some of them, which could allow attacker to make a logged in admin change them and perform Cross-Site Scripting attacks

Source: CVE-2021-24922

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다