CVE-2021-36911

Stored Cross-Site Scripting (XSS) vulnerability discovered in WordPress Comment Engine Pro plugin (versions <= 1.0), could be exploited by users with Editor or higher role.
Configurations

Configuration 1 (hide)

cpe:2.3:a:comment_engine_pro_project:comment_engine_pro:*:*:*:*:*:wordpress:*:*

History

No history.

Information

Published : 2021-12-10 17:15

Updated : 2024-02-28 18:48


NVD link : CVE-2021-36911

Mitre link : CVE-2021-36911

CVE.ORG link : CVE-2021-36911


JSON object : View

Products Affected

comment_engine_pro_project

  • comment_engine_pro
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')