CVE-2021-24771

Name of the Vulnerable Software and Affected Versions: Inspirational Quote Rotator WordPress plugin version 1.0.0

Description: The issue arises from the plugin's failure to sanitize and escape certain quote fields when adding or editing a quote as an administrator. This leads to Stored Cross-Site scripting issues when the quote is displayed in the "Quotes list", even in cases where the unfiltered html capability is disallowed.

Recommendations: For Inspirational Quote Rotator WordPress plugin version 1.0.0, consider disabling the editing functionality of quote fields until a patch is available to prevent potential Stored Cross-Site scripting issues. Restrict access to the "Quotes list" output to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.