CVE-2021-24743

The Podcast Subscribe Buttons WordPress plugin before 1.4.2 allows users with any role capable of editing or adding posts to perform stored XSS.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:secondlinethemes:podcast_subscribe_buttons:*:*:*:*:*:wordpress:*:*

Information

Published : 2021-10-18 14:15

Updated : 2021-10-22 12:42


NVD link : CVE-2021-24743

Mitre link : CVE-2021-24743


JSON object : View

Products Affected

secondlinethemes

  • podcast_subscribe_buttons
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')