Filtered by vendor Sociable Project Subscriptions
Filtered by product Sociable Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-24612 1 Sociable Project 1 Sociable 2024-11-21 4.8 Medium
The Sociable WordPress plugin through 4.3.4.1 does not sanitise or escape some of its settings before outputting them in the admins dashboard, allowing high privilege users to perform Cross-Site Scripting attacks against other users even when the unfiltered_html capability is disallowed