CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Media-Tags Project: Security Vulnerabilities

CVE-2021-24899

The Media-Tags WordPress plugin through 3.2.0.2 does not sanitise and escape any of its Labels settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_htnl capability is disallowed.

CVSS Score

4.8

EPSS Score

0.002

Published

2021-11-29

Page 1

Vulnerabilities

Vulnerable Software

Media-Tags Project: Security Vulnerabilities

Products

Pricing

Contact Us