Filtered by vendor Display Post Metadata Project
Subscribe
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-24855 | 1 Display Post Metadata Project | 1 Display Post Metadata | 2024-02-28 | 3.5 LOW | 5.4 MEDIUM |
The Display Post Metadata WordPress plugin before 1.5.0 adds a shortcode to print out custom fields, however their content is not sanitised or escaped which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks |