Vulnerabilities > CVE-2021-24924 - Unspecified vulnerability in Email LOG Project Email LOG

047910
CVSS 6.1 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
email-log-project

Summary

The Email Log WordPress plugin before 2.4.8 does not escape the d parameter before outputting it back in an attribute in the Log page, leading to a Reflected Cross-Site Scripting issue

Vulnerable Configurations

Part Description Count
Application
Email_Log_Project
56