Lucene search
China National Vulnerability DatabaseCNVD-2021-66919HistoryAug 18, 2021 - 12:00 a.m.
WordPress Plugin Cross-Site Scripting Vulnerability (CNVD-2021-66919)
2021-08-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
wordpress
form maker
cross-site scripting
vulnerability
php
mysql
EPSS
0.001
Percentile
24.8%
WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL. WordPress Plugin is a WordPress open source application plugin. cross-site scripting vulnerability exists in WordPress Plugin Form Maker, which stems from a vulnerability in versions of Form Maker prior to 1.13.60 when editing in the admin dashboard form, the plugin would not escape its form title before exporting it to properties, leading to an authenticated stored cross-site scripting issue. No details of the vulnerability are currently available.
Related
nvd
nvd
CVE-2021-24526
2021-08-16 11:15:08
prion
prion
Cross site scripting
2021-08-16 11:15:00
cvelist
cvelist
CVE-2021-24526 Form Maker < 1.13.60 - Authenticated Stored XSS
2021-08-16 10:48:26
cve
cve
CVE-2021-24526
2021-08-16 11:15:08
patchstack
patchstack
wpvulndb
wpvulndb
Form Maker < 1.13.60 - Authenticated Stored XSS
2021-07-15 00:00:00
wpexploit
wpexploit
Form Maker < 1.13.60 - Authenticated Stored XSS
2021-07-15 00:00:00