Email Log, CVE-2021-24924

CVE, Research URL: CVE-2021-24924
Home page URL: Security reports for Email Log
Application: Email Log
Published on: Dec 06, 2021
Research Description: The Email Log WordPress plugin before 2.4.8 does not escape the d parameter before outputting it back in an attribute in the Log page, leading to a Reflected Cross-Site Scripting issue
Affected versions: Min -, max 2.4.8.
Status: vulnerable