Lucene search
China National Vulnerability DatabaseCNVD-2022-21734HistoryJan 06, 2022 - 12:00 a.m.
WordPress WP Travel Engine plugin跨站脚本漏洞
2022-01-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.001 Low
EPSS
Percentile
24.8%
WordPress is the WordPress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. cross-site scripting vulnerability exists in versions of WordPress WP Travel Engine plugin prior to 5.3.1, which stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress wp travel engine plugin | lt | 5.3.1 |
Related
wpvulndb
wpvulndb
WP Travel Engine < 5.3.1 - Editor+ Stored Cross-Site Scripting
2021-12-01 00:00:00
prion
prion
Cross site scripting
2022-01-03 13:15:00
nvd
nvd
CVE-2021-24680
2022-01-03 13:15:08
wpexploit
wpexploit
WP Travel Engine < 5.3.1 - Editor+ Stored Cross-Site Scripting
2021-12-01 00:00:00
cvelist
cvelist
cve
cve
CVE-2021-24680
2022-01-03 13:15:08
patchstack
patchstack