Lucene search
China National Vulnerability DatabaseCNVD-2021-103356HistoryDec 28, 2021 - 12:00 a.m.
WordPress Download Manager Plugin Cross-Site Scripting Vulnerability (CNVD-2021-103356)
2021-12-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
0.001 Low
EPSS
Percentile
46.9%
WordPress is the Wordpress Foundation’s set of blogging platforms developed using the PHP language. The platform supports the hosting of personal blog sites on PHP and MySQL servers. WordPress Download Manager plugin in versions prior to 3.2.22 suffers from a cross-site scripting vulnerability that stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit the vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| WordPress1 Download Manager Plugin | lt | 3.2.22 |
Related
openvas
openvas
WordPress Download Manager Plugin < 3.2.22 XSS Vulnerability
2022-03-01 00:00:00
patchstack
patchstack
wpvulndb
wpvulndb
Download Manager < 3.2.22 - Subscriber+ Stored Cross-Site Scripting
2021-11-29 00:00:00
nvd
nvd
CVE-2021-24969
2021-12-27 11:15:09
wpexploit
wpexploit
Download Manager < 3.2.22 - Subscriber+ Stored Cross-Site Scripting
2021-11-29 00:00:00
prion
prion
Cross site scripting
2021-12-27 11:15:00
cvelist
cvelist
cve
cve
CVE-2021-24969
2021-12-27 11:15:09