CVE-2021-24424

Publication date

2021-07-12 19:20:57

Family

WPScan

State

PUBLISHED

Description

The WP Reset – Most Advanced WordPress Reset Tool WordPress plugin before 1.90 did not sanitise or escape its extra_data parameter when creating a snapshot via the admin dashboard, leading to an authenticated Stored Cross-Site Scripting issue