CVE-2021-24343

Publication date

2021-06-07 10:49:50

Family

WPScan

State

PUBLISHED

Description

The iFlyChat WordPress plugin before 4.7.0 does not sanitise its APP ID setting before outputting it back in the page, leading to an authenticated Stored Cross-Site Scripting issue