Vulnerabilities and Security Researches

Ocean Extra, CVE-2021-25104

CVE, Research URL: CVE-2021-25104
Home page URL: Security reports for Ocean Extra
Application: Ocean Extra
Published on: Jun 20, 2022
Research Description: The Ocean Extra WordPress plugin before 1.9.5 does not escape generated links which are then used when the OceanWP is active, leading to a Reflected Cross-Site Scripting issue
Affected versions: Min -, max 1.9.4.
Status: vulnerable