Lucene search
China National Vulnerability DatabaseCNVD-2021-102009HistoryNov 29, 2021 - 12:00 a.m.
WordPress Awesome Support plugin cross-site scripting vulnerability
2021-11-2900:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
wordpress
php
mysql
cross-site scripting
vulnerability
client-side
EPSS
0.001
Percentile
22.7%
WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. The platform supports the erection of personal blog sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress Awesome Support plugin in 6.0.6 and its previous versions have cross-site scripting vulnerabilities, the vulnerability stems from the plugin for the parameter id, assignee missing for user-supplied data and output data checksum filtering. An attacker could use this vulnerability to execute JavaScript code on the client side.
Related
cve
cve
CVE-2021-36919
2021-11-26 17:15:07
cvelist
cvelist
prion
prion
Cross site scripting
2021-11-26 17:15:00
wpvulndb
wpvulndb
Awesome Support < 6.0.7 - Reflected Cross-Site Scripting
2021-11-25 00:00:00
Floating Social Media Icon <= 4.3.5 - Admin+ Stored Cross-Site Scripting
2021-10-27 00:00:00
nvd
nvd
CVE-2021-36919
2021-11-26 17:15:07
patchstack
patchstack