MEDIUM
Accesspressthemes
CVE published 2026-05-10
CVE-2021-47910
CVE-2021-47910 describes a stored cross-site scripting issue in AccessPress Social Icons 1.8.2. According to the supplied corpus, an authenticated attacker can place JavaScript payloads into the "icon title" field, and the malicious content is then executed when the plugin page is viewed. The key risk is that stored content is rendered back to users who access the plugin interface, allowing script executi [truncated]