Lucene search
China National Vulnerability DatabaseCNVD-2023-06871HistoryFeb 16, 2022 - 12:00 a.m.
WordPress Remove Footer Credit plugin cross-site scripting vulnerability
2022-02-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
wordpress
footer credit plugin
cross-site scripting
vulnerability
php
mysql
settings
unfiltered html
EPSS
0.001
Percentile
21.4%
WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. The platform supports the hosting of personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin for WordPress. WordPress Remove Footer Credit plugin versions prior to 1.0.11 have a cross-site scripting vulnerability that stems from the fact that the plugin does properly clean up its settings, even when unfiltered_html is disabled. A highly privileged attacker could exploit this vulnerability to perform cross-site scripting attacks.
Related
prion
prion
Cross site scripting
2022-02-14 12:15:00
nvd
nvd
CVE-2021-25050
2022-02-14 12:15:15
cve
cve
CVE-2021-25050
2022-02-14 12:15:15
cvelist
cvelist
wpvulndb
wpvulndb
Remove Footer Credit < 1.0.11 - Admin+ Stored Cross-Site Scripting
2022-01-12 00:00:00
openvas
openvas
WordPress Remove Footer Credit Plugin < 1.0.11 XSS Vulnerability
2022-02-22 00:00:00
patchstack
patchstack
wpexploit
wpexploit
Remove Footer Credit < 1.0.11 - Admin+ Stored Cross-Site Scripting
2022-01-12 00:00:00