Security Advisory

CVE-2021-24885

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-25 13:21:01
Last updated 2024-08-03 19:49:12
Assigner WPScan
State PUBLISHED

Description

The YOP Poll WordPress plugin before 6.1.2 does not escape the perpage parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting