VYPR

Browser Screenshots

by WordPress

CVEs (1)

  • CVE-2021-24439MedJul 12, 2021
    risk 0.35cvss 5.4epss 0.01

    The Browser Screenshots WordPress plugin before 1.7.6 allowed authenticated users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks as the image_class parameter of the browser-shot shortcode was not escaped.