Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2021-101165
HistoryNov 04, 2021 - 12:00 a.m.

Wordpress Plugins Cross-Site Scripting Vulnerability

2021-11-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
wordpress
cross-site scripting
php
mysql
popup anything
vulnerability
remote attackers
xss

EPSS

0.001

Percentile

26.9%

JSON

WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. The platform supports the hosting of personal blogging sites on PHP and MySQL servers. WordPress Plugins is a WordPress open source application plugin. WordPress Plugins suffers from a cross-site scripting vulnerability that stems from insufficient cleanup of user-supplied data in the Popup Anything plugin. An authenticated remote attacker could inject and execute arbitrary HTML and script code in the user’s browser in the context of a vulnerable website. The vulnerability can be exploited by remote attackers to execute cross-site scripting (XSS) attacks.

Related

prion 1
patchstack 1
wpvulndb 1
cvelist 1
cve 1
nvd 1
prion
prion
Cross site scripting
2021-11-29 09:15:00
patchstack
patchstack
WordPress Popup Anything plugin <= 2.0.3 - Stored Cross-Site Scripting (XSS) vulnerability
2021-10-25 00:00:00
wpvulndb
wpvulndb
Popup Anything < 2.0.4 - Contributor+ Stored Cross-Site Scripting
2021-10-25 00:00:00
cvelist
cvelist
CVE-2021-24883 Popup Anything < 2.0.4 - Contributor+ Stored Cross-Site Scripting
2021-11-29 08:25:44
cve
cve
CVE-2021-24883
2021-11-29 09:15:07
nvd
nvd
CVE-2021-24883
2021-11-29 09:15:07

EPSS

0.001

Percentile

26.9%

JSON
Related for CNVD-2021-101165
prion1patchstack1wpvulndb1cvelist1cve1nvd1