Lucene search
Veracode Vulnerability DatabaseVERACODE:33391HistoryDec 20, 2021 - 3:39 a.m.
Cross-Site Scripting (XSS)
2021-12-2003:39:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.001 Low
EPSS
Percentile
30.3%
gaoming13/wechat-php-sdk is vulnerable to cross-site scripting. The vulnerability exists due to the lack of sanitization in serve() function in ‘Wechat.php’, allowing an attacker to inject and execute malicious script.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gaoming13/wechat-php-sdk | le | v1.10.2 | |
| gaoming13/wechat-php-sdk | le | v1.10.2 |
Related
osv
osv
CVE-2021-43678
2021-12-17 13:15:07
Wechat-php-sdk is affected by a Cross Site Scripting vulnerability.
2022-01-07 00:00:29
cve
cve
CVE-2021-43678
2021-12-17 13:15:07
prion
prion
Cross site scripting
2021-12-17 13:15:00
nvd
nvd
CVE-2021-43678
2021-12-17 13:15:07
github
github
Wechat-php-sdk is affected by a Cross Site Scripting vulnerability.
2022-01-07 00:00:29
cvelist
cvelist
CVE-2021-43678
2021-12-17 12:49:17