Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-24277

Disclosure Date: May 14, 2021 (last updated February 22, 2025)
The RSS for Yandex Turbo WordPress plugin before 1.30 did not properly sanitise the user inputs from its Счетчики settings tab before outputting them back in the page, leading to authenticated stored Cross-Site Scripting issues
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0