CVE-2021-24523

Summary

The Daily Prayer Time WordPress plugin before 2021.08.10 does not sanitise or escape some of its settings before outputting them in the page, leading to Authenticated Stored Cross-Site Scripting issues.

Affected Software

VendorProductVersion RangeStatus
UnknownDaily Prayer Time2021.08.10 < 2021.08.10affected

Weaknesses

  • CWE-79: CWE-79 Cross-site Scripting (XSS)

ADP Enrichment

CVE Program Container

Additional References

References