Lucene search
Apple502jWPEX-ID:59589E74-F901-4F4D-81DE-26AD19D1B7FDHistorySep 06, 2021 - 12:00 a.m.
Better Find and Replace < 1.2.9 - Reflected Cross-Site Scripting
2021-09-0600:00:00
apple502j
302
0.001 Low
EPSS
Percentile
43.2%
The plugin does not escape the ‘s’ GET parameter before outputting back in the All Masking Rules page, leading to a Reflected Cross-Site Scripting issue
https://example.com/wp-admin/admin.php?page=cs-all-masking-rules&s=<script>alert(/XSS/)</script>Related
nvd
nvd
CVE-2021-24676
2021-10-04 12:15:08
cve
cve
CVE-2021-24676
2021-10-04 12:15:08
cnvd
cnvd
WordPress Better Find and Replace plugin cross-site scripting vulnerability
2021-10-09 00:00:00
prion
prion
Cross site scripting
2021-10-04 12:15:00
cvelist
cvelist
wpvulndb
wpvulndb
Better Find and Replace < 1.2.9 - Reflected Cross-Site Scripting
2021-09-06 00:00:00
patchstack
patchstack