Vulnerabilities > CVE-2021-24344 - Unspecified vulnerability in Easy Preloader Project Easy Preloader 1.0.0

047910
CVSS 4.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
easy-preloader-project

Summary

The Easy Preloader WordPress plugin through 1.0.0 does not sanitise its setting fields, leading to authenticated (admin+) Stored Cross-Site scripting issues

Vulnerable Configurations

Part Description Count
Application
Easy_Preloader_Project
1