Lucene search
China National Vulnerability DatabaseCNVD-2022-19819HistoryJan 26, 2022 - 12:00 a.m.
WordPress Code Snippets plugin cross-site scripting vulnerability
2022-01-2600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.001 Low
EPSS
Percentile
43.6%
WordPress is the Wordpress Foundation’s set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. cross-site scripting vulnerability exists in versions of the Code Snippets plugin for WordPress prior to 2.14.3, which stems from not escaping the Snippets security mode parameter. An attacker could exploit the vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress code snippets plugin | lt | 2.14.3 |
Related
wpexploit
wpexploit
Code Snippets < 2.14.3 - Reflected Cross-Site Scripting
2021-12-27 00:00:00
wpvulndb
wpvulndb
Code Snippets < 2.14.3 - Reflected Cross-Site Scripting
2021-12-27 00:00:00
prion
prion
Cross site scripting
2022-01-24 08:15:00
openvas
openvas
WordPress Code Snippets Plugin < 2.14.3 XSS Vulnerability
2022-01-26 00:00:00
cve
cve
CVE-2021-25008
2022-01-24 08:15:09
patchstack
patchstack
cvelist
cvelist
CVE-2021-25008 Code Snippets < 2.14.3 - Reflected Cross-Site Scripting
2022-01-24 08:01:07
nuclei
nuclei
The Code Snippets WordPress Plugin < 2.14.3 - Cross-Site Scripting
2022-02-08 01:07:19
osv
osv
CVE-2021-25008
2022-01-24 08:15:09
nvd
nvd
CVE-2021-25008
2022-01-24 08:15:09