Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2021-99628
HistoryNov 10, 2021 - 12:00 a.m.

WordPress AddToAny Share Buttons plugin cross-site scripting vulnerability

2021-11-1000:00:00
China National Vulnerability Database
www.cnvd.org.cn
6

0.001 Low

EPSS

Percentile

21.5%

WordPress is a blogging platform developed by the Wordpress Foundation using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. WordPress AddToAny Share Buttons plugin has a cross-site scripting vulnerability in versions prior to 1.7.48, which stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit this vulnerability to execute JavaScript code on the client side.

0.001 Low

EPSS

Percentile

21.5%