Lucene search
China National Vulnerability DatabaseCNVD-2022-05870HistorySep 08, 2021 - 12:00 a.m.
WordPress plugin Site Reviews cross-site scripting vulnerability
2021-09-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
wordpress
site reviews
cross-site scripting
version 5.13.1
attackers
unfiltered html
EPSS
0.001
Percentile
24.8%
WordPress is a set of blogging platforms developed using the PHP language by the WordPress (Wordpress) Foundation. The platform supports setting up personal blog sites on PHP and MySQL servers. cross-site scripting vulnerability exists in versions of the WordPress plugin Site Reviews prior to 5.13.1, which stems from not cleaning up some comment details when adding comments, and can be exploited by attackers to perform cross-site scripting attacks when unfiltered html is not allowed .
Related
patchstack
patchstack
prion
prion
Cross site scripting
2021-09-06 11:15:00
nvd
nvd
CVE-2021-24603
2021-09-06 11:15:08
cvelist
cvelist
CVE-2021-24603 Site Reviews < 5.13.1 - Authenticated Stored XSS
2021-09-06 11:09:33
cve
cve
CVE-2021-24603
2021-09-06 11:15:08
wpexploit
wpexploit
Site Reviews < 5.13.1 - Authenticated Stored XSS
2021-08-09 00:00:00
wpvulndb
wpvulndb
Site Reviews < 5.13.1 - Authenticated Stored XSS
2021-08-09 00:00:00