Lucene search
China National Vulnerability DatabaseCNVD-2021-102791HistoryDec 26, 2021 - 12:00 a.m.
WordPress icegram plugin cross-site scripting vulnerability (CNVD-2021-102791)
2021-12-2600:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
40.2%
WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress icegram plugin in versions prior to 2.0.5 has a cross-site scripting vulnerability, which stems from the plugin does not clean and escape the message id parameter, an attacker can use this vulnerability to execute cross-site scripting attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress icegram plugin | lt | 2.0.5 |
Related
wpvulndb
wpvulndb
Icegram < 2.0.5 - Reflected Cross-Site Scripting
2021-11-22 00:00:00
prion
prion
Cross site scripting
2021-12-21 09:15:00
wpexploit
wpexploit
Icegram < 2.0.5 - Reflected Cross-Site Scripting
2021-11-22 00:00:00
cvelist
cvelist
CVE-2021-24941 Icegram < 2.0.5 - Reflected Cross-Site Scripting
2021-12-21 08:45:37
cve
cve
CVE-2021-24941
2021-12-21 09:15:07
patchstack
patchstack
nvd
nvd
CVE-2021-24941
2021-12-21 09:15:07