Lucene search
China National Vulnerability DatabaseCNVD-2022-21733HistoryJan 06, 2022 - 12:00 a.m.
WordPress CRM Form Entries Plugin Cross-Site Scripting Vulnerability
2022-01-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
0.001 Low
EPSS
Percentile
31.8%
WordPress is the WordPress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blog sites on PHP and MySQL servers. WordPress CRM Form Entries Plugin has a cross-site scripting vulnerability in versions prior to 1.1.7, which stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress crm form entries plugin | lt | 1.1.7 |
Related
cve
cve
CVE-2021-25080
2022-01-24 08:15:09
nvd
nvd
CVE-2021-25080
2022-01-24 08:15:09
packetstorm
packetstorm
WordPress Contact Form Entries 1.1.6 Cross Site Scripting
2022-01-05 00:00:00
WordPress CRM Form Entries Cross Site Scripting
2022-01-03 00:00:00
exploitdb
exploitdb
cvelist
cvelist
prion
prion
Cross site scripting
2022-01-24 08:15:00
zdt
zdt
WordPress CRM Form Entries 1.1.6 - Cross Site Scripting Vulnerability
2022-01-03 00:00:00
checkpoint_advisories
checkpoint_advisories