Lucene search
China National Vulnerability DatabaseCNVD-2021-99778HistoryDec 09, 2021 - 12:00 a.m.
WordPress WP Google Fonts plugin cross-site scripting vulnerability
2021-12-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
0.001 Low
EPSS
Percentile
30.1%
WordPress is the WordPress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blog sites on servers with PHP and MySQL. WordPress WP Google Fonts plugin has a cross-site scripting vulnerability in versions prior to 3.1.5, which stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress wp google fonts plugin | lt | 3.1.5 |
Related
cvelist
cvelist
CVE-2021-24935 WP Google Fonts < 3.1.5 - Reflected Cross-Site Scripting
2021-12-06 15:55:35
cve
cve
CVE-2021-24935
2021-12-06 16:15:08
nvd
nvd
CVE-2021-24935
2021-12-06 16:15:08
wpexploit
wpexploit
WP Google Fonts < 3.1.5 - Reflected Cross-Site Scripting
2021-11-03 00:00:00
wpvulndb
wpvulndb
WP Google Fonts < 3.1.5 - Reflected Cross-Site Scripting
2021-11-03 00:00:00
prion
prion
Cross site scripting
2021-12-06 16:15:00