Stop Spammers Security | Block Spam Users, Comments, Forms, CVE-2021-24517

CVE, Research URL: CVE-2021-24517
Home page URL: Security reports for Stop Spammers Security | Block Spam Users, Comments, Forms
Application: Stop Spammers Security | Block Spam Users, Comments, Forms
Published on: Sep 06, 2021
Research Description: The Stop Spammers Security | Block Spam Users, Comments, Forms WordPress plugin before 2021.18 does not escape some of its settings, allowing high privilege users such as admin to set Cross-Site Scripting payloads in them even when the unfiltered_html capability is disallowed
Affected versions: max 2021.18.
Status: vulnerable