Lucene search
China National Vulnerability DatabaseCNVD-2022-68901HistoryAug 18, 2021 - 12:00 a.m.
WordPress VikRentCar Car Rental Management System plugin cross-site scripting vulnerability
2021-08-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
24.8%
WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. The WordPress plugin is an application plugin for WordPress. A cross-site scripting vulnerability exists in versions of the WordPress VikRentCar Car Rental Management System plugin prior to 1.1.10. The vulnerability stems from the plugin’s failure to clean up the “text next to icon” field when adding or editing features. An attacker could exploit this vulnerability to inject JavaScript and execute a stored XSS attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress wordpress vikrentcar car rental management system | lt | 1.1.10 |
Related
nvd
nvd
CVE-2021-24519
2021-08-16 11:15:08
wpexploit
wpexploit
Vik Rent Car < 1.1.10 - Authenticated Stored Cross-Site Scripting (XSS)
2021-07-19 00:00:00
cve
cve
CVE-2021-24519
2021-08-16 11:15:08
cvelist
cvelist
wpvulndb
wpvulndb
Vik Rent Car < 1.1.10 - Authenticated Stored Cross-Site Scripting (XSS)
2021-07-19 00:00:00
prion
prion
Cross site scripting
2021-08-16 11:15:00