CVE-2021-24895 - Cyber Security News

Read Time:13 Second

The Cybersoldier WordPress plugin before 1.7.0 does not sanitise and escape the URL settings before outputting it in an attribute, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed

More Stories

epiphany-47.5-1.fc41

FEDORA-2025-164c668d6a Packages in this update: epiphany-47.5-1.fc41 Update description: Update to 47.5, notably fixing CVE-2025-3839 Read More

epiphany-48.1-1.fc42

FEDORA-2025-efbe201596 Packages in this update: epiphany-48.1-1.fc42 Update description: Update to 48.1, notably fixing CVE-2025-3839 Read More

icecat-115.22.0-2.rh1.fc42

FEDORA-2025-17f64d2c4d Packages in this update: icecat-115.22.0-2.rh1.fc42 Update description: Rebuild with pregenerated cbindgen Read More

icecat-115.22.0-2.rh1.fc40

FEDORA-2025-bca38111fc Packages in this update: icecat-115.22.0-2.rh1.fc40 Update description: Rebuild with pregenerated cbindgen Read More

icecat-115.22.0-2.rh1.fc41

FEDORA-2025-883816b756 Packages in this update: icecat-115.22.0-2.rh1.fc41 Update description: Rebuild with pregenerated cbindgen Read More

mingw-LibRaw-0.21.4-1.fc41

FEDORA-2025-e7dea91428 Packages in this update: mingw-LibRaw-0.21.4-1.fc41 Update description: Update to LibRaw 0.21.4. Read More