CVE-2021-24152
Description
The "All Subscribers" setting page of Popup Builder was vulnerable to reflected Cross-Site Scripting.
CWE
- CWE-79 — CWE-79 Cross-site Scripting (XSS)
Affected
- Unknown / Popup Builder – Responsive WordPress Pop up – Subscription & Newsletter — v=3.74 <3.74 [affected]
CVSS
- (none)
References
- https://wpscan.com/vulnerability/597e9686-f4e2-43bf-85ef-c5967e5652bd x_refsource_CONFIRM
Source
cvelistV5-main/cves/2021/24xxx/CVE-2021-24152.json