Lucene search
China National Vulnerability DatabaseCNVD-2022-09988HistoryFeb 10, 2022 - 12:00 a.m.
WordPress Visual CSS Style Editor plugin cross-site scripting vulnerability
2022-02-1000:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
0.001 Low
EPSS
Percentile
30.0%
WordPress is a set of blogging platforms developed by the WordPress Foundation using the PHP language. WordPress Visual CSS Style Editor plugin in versions prior to 7.5.4 has a cross-site scripting vulnerability that stems from not cleaning up and escaping the wyp_page_type parameter. An attacker could use this vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress visual css style editor plugin | lt | 7.5.4 |
Related
patchstack
patchstack
wpvulndb
wpvulndb
Visual CSS Style Editor < 7.5.4 - Reflected Cross-Site Scripting
2022-01-03 00:00:00
wpexploit
wpexploit
Visual CSS Style Editor < 7.5.4 - Reflected Cross-Site Scripting
2022-01-03 00:00:00
nvd
nvd
CVE-2021-24934
2022-02-01 13:15:08
cve
cve
CVE-2021-24934
2022-02-01 13:15:08
prion
prion
Cross site scripting
2022-02-01 13:15:00
cvelist
cvelist