[ { "id": 413699979, "name": "CVE-2021-24545", "full_name": "V35HR4J\/CVE-2021-24545", "owner": { "login": "V35HR4J", "id": 54109630, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/54109630?v=4", "html_url": "https:\/\/github.com\/V35HR4J" }, "html_url": "https:\/\/github.com\/V35HR4J\/CVE-2021-24545", "description": "The plugin does not sanitise the HTML allowed in the Bio of users, allowing them to use malicious JavaScript code, which will be executed when anyone visit a post in the frontend made by such user. As a result, user with a role as low as author could perform Cross-Site Scripting attacks against users, which could potentially lead to privilege escalation when an admin view the related post\/s.", "fork": false, "created_at": "2021-10-05T06:28:05Z", "updated_at": "2021-10-12T14:24:58Z", "pushed_at": "2021-10-05T06:29:58Z", "stargazers_count": 2, "watchers_count": 2, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 2, "score": 0, "subscribers_count": 1 }, { "id": 424104785, "name": "CVE-2021-24545", "full_name": "dnr6419\/CVE-2021-24545", "owner": { "login": "dnr6419", "id": 43310843, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/43310843?v=4", "html_url": "https:\/\/github.com\/dnr6419" }, "html_url": "https:\/\/github.com\/dnr6419\/CVE-2021-24545", "description": "WordPress Plugin HTML Author Bio description XSS", "fork": false, "created_at": "2021-11-03T05:41:46Z", "updated_at": "2021-11-03T05:49:47Z", "pushed_at": "2021-11-03T05:49:45Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 } ]