Filtered by vendor Shoppagewp Subscriptions
Filtered by product Shop Page Wp Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-24811 1 Shoppagewp 1 Shop Page Wp 2024-11-21 4.8 Medium
The Shop Page WP WordPress plugin before 1.2.8 does not sanitise and escape some of the Product fields, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.