Vulnerabilities > Language BAR Flags Project > Language BAR Flags > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-09-13 | CVE-2021-24431 | Cross-site Scripting vulnerability in Language BAR Flags Project Language BAR Flags The Language Bar Flags WordPress plugin through 1.0.8 does not have any CSRF in place when saving its settings and did not sanitise or escape them when generating the flag bar in the frontend. | 4.3 |