CVE-2021-24523

The Daily Prayer Time WordPress plugin before 2021.08.10 does not sanitise or escape some of its settings before outputting them in the page, leading to Authenticated Stored Cross-Site Scripting issues.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:daily_prayer_time_project:daily_prayer_time:*:*:*:*:*:wordpress:*:*

Information

Published : 2021-09-13 11:15

Updated : 2021-09-23 05:46


NVD link : CVE-2021-24523

Mitre link : CVE-2021-24523


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Products Affected

daily_prayer_time_project

  • daily_prayer_time