CVE-2021-47910

Name of the Vulnerable Software and Affected Versions AccessPress Social Icons version 1.8.2

Description A stored cross-site scripting issue allows authenticated attackers to inject malicious scripts. This occurs when JavaScript payloads, such as image tags with onerror event handlers, are entered into the icon title field. These scripts execute when a user views the plugin interface, affecting all users who access that page.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.