The UpdraftPlus WordPress Backup Plugin WordPress plugin before 1.6.59 does not sanitise its updraft_service settings, allowing high privilege users to set malicious JavaScript payload in it and leading to a Stored Cross-Site Scripting issue
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2022-01-24T08:00:45
Updated: 2022-01-24T08:00:45
Reserved: 2021-01-14T00:00:00
Link: CVE-2021-24423
JSON object: View
NVD Information
Status : Modified
Published: 2022-01-24T08:15:08.407
Modified: 2023-11-07T03:31:13.260
Link: CVE-2021-24423
JSON object: View
Redhat Information
No data.
CWE