Vulnerabilities > CVE-2021-25012 - Unspecified vulnerability in Popozure Pz-Linkcard

047910
CVSS 6.1 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
popozure

Summary

The Pz-LinkCard WordPress plugin through 2.4.4.4 does not sanitise and escape multiple parameters before outputting them back in admin dashboard pages, leading to Reflected Cross-Site Scripting issues

Vulnerable Configurations

Part Description Count
Application
Popozure
98