Lucene search
Francesco CarlucciPATCHSTACK:8A6687311FBCB03BBEA8F3E9EDF9EC1FHistoryNov 09, 2021 - 12:00 a.m.
WordPress Get Custom Field Values plugin <= 4.0 - Stored Cross-Site Scripting (XSS) vulnerability
2021-11-0900:00:00
Francesco Carlucci
patchstack.com
7
0.001 Low
EPSS
Percentile
25.0%
Stored Cross-Site Scripting (XSS) vulnerability discovered by Francesco Carlucci in WordPress Get Custom Field Values plugin (versions <= 4.0).
Solution
Update the WordPress Get Custom Field Values plugin to the latest available version (at least 4.0.1).
| CPE | Name | Operator | Version |
|---|---|---|---|
| get custom field values | le | 4.0 |
Related
osv
osv
CVE-2021-24871
2021-12-13 11:15:09
wpexploit
wpexploit
Get Custom Field Values < 4.0.1 - Contributor+ Stored Cross-Site Scripting
2021-11-09 00:00:00
cvelist
cvelist
wpvulndb
wpvulndb
Get Custom Field Values < 4.0.1 - Contributor+ Stored Cross-Site Scripting
2021-11-09 00:00:00
cve
cve
CVE-2021-24871
2021-12-13 11:15:09
cnvd
cnvd
WordPress Get Custom Field Values plugin cross-site scripting vulnerability
2021-12-18 00:00:00
prion
prion
Cross site scripting
2021-12-13 11:15:00
nvd
nvd
CVE-2021-24871
2021-12-13 11:15:09