Vulnerabilities > Prothemedesign > Browser Screenshots > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-07-12 | CVE-2021-24439 | Cross-site Scripting vulnerability in Prothemedesign Browser Screenshots The Browser Screenshots WordPress plugin before 1.7.6 allowed authenticated users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks as the image_class parameter of the browser-shot shortcode was not escaped. | 3.5 |