CVE-2021-25044

Published: Oct 10, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

The Cryptocurrency Pricing list and Ticker WordPress plugin through 1.5 does not sanitise and escape the ccpw_setpage parameter before outputting it back in pages where its shortcode is embed, leading to a Reflected Cross-Site Scripting issue

Vendor	Product	Versions
Unknown	Cryptocurrency Pricing list and Ticker	affected `1.5 - <= 1.5`

Weaknesses (CWE)

CWE-79

References

https://wpscan.com/vulnerability/dc1507c1-8894-4ab6-b25f-c5e26a425b03

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-25044

Description

Affected Products

Weaknesses (CWE)

References