CVE-2021-25012

Publication date

2022-03-28 17:21:28

Family

WPScan

State

PUBLISHED

Description

The Pz-LinkCard WordPress plugin through 2.4.4.4 does not sanitise and escape multiple parameters before outputting them back in admin dashboard pages, leading to Reflected Cross-Site Scripting issues