Vulnerabilities and Security Researches

Advanced iFrame, CVE-2021-24953

CVE, Research URL: CVE-2021-24953
Home page URL: Security reports for Advanced iFrame
Application: Advanced iFrame
Published on: -
Research Description: The Advanced iFrame WordPress plugin before 2022 does not sanitise and escape the ai_config_id parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting issue
Affected versions: Min -, max 2021.9.
Status: vulnerable