Vulnerabilities > Patrickposner > Qyrr
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-16 | CVE-2021-24559 | Cross-site Scripting vulnerability in Patrickposner Qyrr 0.5/0.6 The Qyrr WordPress plugin before 0.7 does not escape the data-uri of the QR Code when outputting it in a src attribute, allowing for Cross-Site Scripting attacks. | 5.4 |