CVE-2021-24812

The BetterLinks WordPress plugin before 1.2.6 does not sanitise and escape some of imported link fields, which could lead to Stored Cross-Site Scripting issues when an admin import a malicious CSV.

Date published : 2021-11-23

https://wpscan.com/vulnerability/6bc8fff1-ff10-4175-8a46-563f0f26f96a