Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-24468

Disclosure Date: August 02, 2021 (last updated February 23, 2025)
The Leaflet Map WordPress plugin before 3.0.0 does not escape some shortcode attributes before they are used in JavaScript code or HTML, which could allow users with a role as low as Contributors to exploit stored XSS issues
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0