Security Advisory

CVE-2021-24239

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-22 21:00:51

Last updated 2024-08-03 19:21:18

Assigner WPScan

State PUBLISHED

Description

The Pie Register – User Registration Forms. Invitation based registrations, Custom Login, Payments WordPress plugin before 3.7.0.1 does not sanitise the invitaion_code GET parameter when outputting it in the Activation Code page, leading to a reflected Cross-Site Scripting issue.

← Browse all CVEs View on cve.org ↗