Lucene search
China National Vulnerability DatabaseCNVD-2022-08292HistoryJan 18, 2022 - 12:00 a.m.
WordPress Modern Events Calendar Lite Plugin Cross-Site Scripting Vulnerability (CNVD-2022-08292)
2022-01-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
0.001 Low
EPSS
Percentile
25.0%
WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blog sites on PHP and MySQL servers. WordPress Modern Events Calendar Lite plugin in versions prior to 6.2.0 suffers from a cross-site scripting vulnerability that stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress modern events calendar lite plugin | lt | 6.2.0 |
Related
prion
prion
Cross site scripting
2022-01-17 13:15:00
cvelist
cvelist
patchstack
patchstack
nvd
nvd
CVE-2021-25046
2022-01-17 13:15:07
wpvulndb
wpvulndb
openvas
openvas
WordPress Modern Events Calendar Lite Plugin < 6.2.0 XSS Vulnerability
2022-01-18 00:00:00
cve
cve
CVE-2021-25046
2022-01-17 13:15:07
wpexploit
wpexploit