Lucene search
China National Vulnerability DatabaseCNVD-2022-22327HistoryMar 16, 2022 - 12:00 a.m.
WordPress MOLIE plugin cross-site scripting vulnerability
2022-03-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.001 Low
EPSS
Percentile
40.2%
WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. WordPress MOLIE plugin has a cross-site scripting vulnerability that stems from not escaping the course_id parameter before exporting it back to the administration dashboard, which can be exploited by attackers to conduct reflective cross-site scripting attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress molie plugin | le | 0.5 |
Related
cvelist
cvelist
CVE-2021-25006 MOLIE <= 0.5 - Reflected Cross-Site Scripting
2022-03-14 14:41:13
wpexploit
wpexploit
MOLIE <= 0.5 - Reflected Cross-Site Scripting
2021-11-29 00:00:00
prion
prion
Cross site scripting
2022-03-14 15:15:00
cve
cve
CVE-2021-25006
2022-03-14 15:15:09
patchstack
patchstack
nvd
nvd
CVE-2021-25006
2022-03-14 15:15:09
wpvulndb
wpvulndb
MOLIE <= 0.5 - Reflected Cross-Site Scripting
2021-11-29 00:00:00