cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2021-24293,https://securityvulnerability.io/vulnerability/CVE-2021-24293,NextGEN Gallery Pro < 3.1.11 - Reflected Cross-Site Scripting (XSS),"In the eCommerce module of the NextGEN Gallery Pro WordPress plugin before 3.1.11, there is an action to call get_cart_items via photocrati_ajax , after that the settings[shipping_address][name] is able to inject malicious javascript.",Wordpress,Nextgen Gallery Pro,6.1,MEDIUM,0.001230000052601099,false,,false,false,false,,false,false,2021-05-05T18:28:48.000Z,0