← Back to CVE List
CVE-2021-24985
The Easy Forms for Mailchimp WordPress plugin before 6.8.6 does not sanitise and escape the field_name and field_type parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt