Lucene search
China National Vulnerability DatabaseCNVD-2021-100246HistoryDec 03, 2021 - 12:00 a.m.
WordPress Cross-Site Scripting Vulnerability (CNVD-2021-100246)
2021-12-0300:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
0.001 Low
EPSS
Percentile
30.2%
WordPress is a blogging platform developed by the WordPress (Wordpress) Foundation using the PHP language. A cross-site scripting vulnerability exists in the Wordpress Plugin Events Manager, which stems from the product’s failure to securely handle data for the search parameter. An attacker could cause client-side code execution through this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress events manager | lt | 5.9.8 |
Related
cvelist
cvelist
CVE-2020-35037 Events Manager < 5.9.8 - Cross-Site Scripting (XSS)
2021-12-01 22:50:11
prion
prion
Cross site scripting
2021-12-01 23:15:00
cve
cve
CVE-2020-35037
2021-12-01 23:15:07
nvd
nvd
CVE-2020-35037
2021-12-01 23:15:07
openvas
openvas
WordPress Events Manager Plugin < 5.9.8 Multiple Vulnerabilities
2021-12-06 00:00:00