Unrated severityNVD Advisory· Published Apr 18, 2022· Updated Aug 3, 2024
Easy Social Feed < 6.2.7 - Reflected Cross-Site Scripting
CVE-2021-25120
Description
The Easy Social Feed Free and Pro WordPress plugins before 6.2.7 do not sanitise some of their parameters used via AJAX actions before outputting them back in the response, leading to Reflected Cross-Site Scripting issues
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Easy Social Feed plugindescription
- Range: <6.2.7
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/0ad020b5-0d16-4521-8ea7-39cd206ab9f6mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.