CVE-2021-36896

Name of the Vulnerable Software and Affected Versions Pricing Table (WordPress plugin) versions <= 1.5.2

Description The issue is an Authenticated Stored Cross-Site Scripting (XSS) vulnerability. This means that an attacker with at least author or higher user role can inject malicious scripts into the application, which will be executed by the browser of other users.

Recommendations For Pricing Table (WordPress plugin) versions <= 1.5.2, update to a version higher than 1.5.2 to resolve the issue. As a temporary workaround, consider restricting access to the plugin's functionality for users with author or higher roles until a patch is available.