Vulnerabilities > Content Staging Project

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-21	CVE-2021-39356	Cross-site Scripting vulnerability in Content Staging Project Content Staging The Content Staging WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and escaping via several parameters that are echo'd out via the ~/templates/settings.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 2.0.1. network content-staging-project CWE-79	3.5

Vulnerabilities > Content Staging Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Content Staging Project"}]}