Lucene search
WpvulndbWPVDB-ID:D705623B-FDEA-4968-B8B6-DF71F9C186E5HistorySep 09, 2021 - 12:00 a.m.
Simple Matted Thumbnails <= 1.01 - Reflected Cross-Site Scripting
2021-09-0900:00:00
wpscan.com
10
0.001 Low
EPSS
Percentile
32.7%
The plugin is vulnerable to Reflected Cross-Site Scripting due to a reflected $_SERVER[“PHP_SELF”] value in the ~/simple-matted-thumbnail.php file which allows attackers to inject arbitrary web scripts.
| CPE | Name | Operator | Version |
|---|---|---|---|
| simple-matted-thumbnails | eq | * |
Related
patchstack
patchstack
nvd
nvd
CVE-2021-38339
2021-09-10 14:15:10
cve
cve
CVE-2021-38339
2021-09-10 14:15:10
cvelist
cvelist
prion
prion
Cross site scripting
2021-09-10 14:15:00