Vulnerabilities > Inspirational Quote Rotator Project

DATE CVE VULNERABILITY TITLE RISK
2021-12-13 CVE-2021-24771 Cross-site Scripting vulnerability in Inspirational Quote Rotator Project Inspirational Quote Rotator 1.0.0
The Inspirational Quote Rotator WordPress plugin through 1.0.0 does not sanitize and escape some of its quote fields when adding/editing a quote as admin, leading to Stored Cross-Site scripting issues when the quote is output in the "Quotes list" even when the unfiltered_html capability is disallowed
3.5