Vulnerabilities > Awplife > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-11	CVE-2021-24709	Cross-site Scripting vulnerability in Awplife Weather Effect The Weather Effect WordPress plugin before 1.3.6 does not properly validate and escape some of its settings (like _size_leaf, _flakes_leaf, *_speed) which could lead to Stored Cross-Site Scripting issues network awplife CWE-79	3.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.