Vulnerabilities > Plugin Planet > Prismatic > Low

DATE CVE VULNERABILITY TITLE RISK
2021-07-12 CVE-2021-24408 Cross-site Scripting vulnerability in Plugin-Planet Prismatic
The Prismatic WordPress plugin before 2.8 does not sanitise or validate some of its shortcode parameters, allowing users with a role as low as Contributor to set Cross-Site payload in them.
3.5