Lucene search
China National Vulnerability DatabaseCNVD-2022-68912HistoryAug 05, 2021 - 12:00 a.m.
WordPress Bookshelf plugin cross-site scripting vulnerability
2021-08-0500:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
25.0%
WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. The Bookshelf plugin is an application plugin for WordPress. Bookshelf WordPress plugin version 2.0.4 and earlier is vulnerable to a cross-site scripting vulnerability, which stems from the plugin’s failure to adequately filter its "Paypal The vulnerability is caused by the plugin’s failure to adequately filter checks before exporting its “email address” settings to the page, which could be exploited by an attacker to store cross-site scripting issues.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress wordpress bookshelf plugin | le | 2.0.4 |
Related
nvd
nvd
CVE-2021-24478
2021-08-02 11:15:10
cvelist
cvelist
prion
prion
Cross site scripting
2021-08-02 11:15:00
wpvulndb
wpvulndb
Bookshelf <= 2.0.4 - Authenticated Stored Cross-Site Scripting (XSS)
2021-06-28 00:00:00
patchstack
patchstack
wpexploit
wpexploit
Bookshelf <= 2.0.4 - Authenticated Stored Cross-Site Scripting (XSS)
2021-06-28 00:00:00
cve
cve
CVE-2021-24478
2021-08-02 11:15:10
mscve
mscve
Microsoft Office Remote Code Execution Vulnerability
2021-08-10 07:00:00