Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Migrate Users Project Subscribe
Filtered by product Migrate Users
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-24477 1 Migrate Users Project 1 Migrate Users 2021-09-21 4.3 MEDIUM 6.1 MEDIUM
The Migrate Users WordPress plugin through 1.0.1 does not sanitise or escape its Delimiter option before outputting in a page, leading to a Stored Cross-Site Scripting issue. Furthermore, the plugin does not have CSRF check in place when saving its options, allowing the issue to be exploited via a CSRF attack.