Lucene search
China National Vulnerability DatabaseCNVD-2021-53935HistoryJul 21, 2021 - 12:00 a.m.
WordPress Cross-Site Scripting Vulnerability (CNVD-2021-53935)
2021-07-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.001 Low
EPSS
Percentile
36.1%
WordPress is a set of blogging platforms developed using the PHP language by the WordPress (Wordpress) Foundation. The platform supports the hosting of personal blog sites on PHP and MySQL servers. tagDiv Newspaper theme version 10.3.9.1 of WordPress has a cross-site scripting vulnerability that originates from the td_ajax_block API call to wp-admin/admin-ajax.php with the td_ block_id parameter of wp-admin/admin-ajax.php. No detailed vulnerability details are available at this time.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress tagdiv newspaper theme 10. | eq | 3.9.1 |
Related
prion
prion
Design/Logic Flaw
2021-07-19 21:15:00
wpvulndb
wpvulndb
Newspaper < 11 - Reflected Cross-Site Scripting (XSS)
2021-06-30 00:00:00
nvd
nvd
CVE-2021-3135
2021-07-19 21:15:07
wpexploit
wpexploit
Newspaper < 11 - Reflected Cross-Site Scripting (XSS)
2021-06-30 00:00:00
cve
cve
CVE-2021-3135
2021-07-19 21:15:07
cvelist
cvelist
CVE-2021-3135
2021-07-19 20:01:13