Vulnerabilities > Wpcloudplugins > Lets BOX

DATE CVE VULNERABILITY TITLE RISK
2021-12-13 CVE-2021-42549 Cross-site Scripting vulnerability in Wpcloudplugins Lets-Box
Insufficient Input Validation in the search functionality of Wordpress plugin Lets-Box prior to 1.15.3 allows unauthenticated user to craft a reflected Cross-Site Scripting attack.
network
low complexity
wpcloudplugins CWE-79
6.1
6.1