https://vulnerability.circl.lu/sightings/feed 2026-05-06T08:59:24.800905+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/584f054c-5af8-438f-b02c-4b0ccf720a74/export 2026-05-06T08:59:25.136564+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "584f054c-5af8-438f-b02c-4b0ccf720a74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-24686", "type": "seen", "source": "https://t.me/cibsecurity/36628", "content": "\u203c CVE-2021-24686 \u203c\n\nThe SVG Support WordPress plugin before 2.3.20 does not escape the \"CSS Class to target\" setting before outputting it in an attribute, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-01T16:26:29.000000Z"} 2022-02-01T16:26:29+00:00