Lucene search
China National Vulnerability DatabaseCNVD-2022-68546HistoryJan 05, 2022 - 12:00 a.m.
WordPress plugin Site Reviews cross-site scripting vulnerability
2022-01-0500:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
wordpress
site reviews
cross-site scripting
vulnerability
php
mysql
authentication
EPSS
0.001
Percentile
42.7%
WordPress is a set of blogging platform developed using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. cross-site scripting vulnerability exists in the WordPress plugin Site Reviews, which stems from the program’s failure to filter and escape the site-reviews parameter. An attacker could use this vulnerability to steal cookie-based authentication credentials.
Related
patchstack
patchstack
wpvulndb
wpvulndb
Site Reviews < 5.17.3 - Unauthenticated Stored Cross-Site Scripting
2021-12-06 00:00:00
prion
prion
Cross site scripting
2022-01-03 13:15:00
cve
cve
CVE-2021-24973
2022-01-03 13:15:08
nvd
nvd
CVE-2021-24973
2022-01-03 13:15:08
cvelist
cvelist
wpexploit
wpexploit
Site Reviews < 5.17.3 - Unauthenticated Stored Cross-Site Scripting
2021-12-06 00:00:00