Lucene search
WpvulndbWPVDB-ID:EBB9465A-B2D3-4102-86F3-5CD632B4B476HistorySep 09, 2021 - 12:00 a.m.
DJ EmailPublish <= 1.7.2 - Reflected Cross-Site Scripting
2021-09-0900:00:00
wpscan.com
13
vulnerable
reflected cross-site scripting
php_self
EPSS
0.001
Percentile
32.7%
The plugin is vulnerable to Reflected Cross-Site Scripting due to a reflected $_SERVER[“PHP_SELF”] value in the ~/dj-email-publish.php file which allows attackers to inject arbitrary web scripts.
Related
prion
prion
Cross site scripting
2021-09-10 14:15:00
cve
cve
CVE-2021-38329
2021-09-10 14:15:09
nvd
nvd
CVE-2021-38329
2021-09-10 14:15:09
patchstack
patchstack
cvelist
cvelist
CVE-2021-38329 DJ EmailPublish <= 1.7.2 Reflected Cross-Site Scripting
2021-09-10 13:33:41