Lucene search
China National Vulnerability DatabaseCNVD-2022-86547HistoryOct 13, 2021 - 12:00 a.m.
WordPress Duplicate Page plugin cross-site scripting vulnerability
2021-10-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.001 Low
EPSS
Percentile
24.8%
WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. WordPress Duplicate Page plugin 4.4.2 and earlier versions have a cross-site scripting vulnerability that stems from the plugin’s failure to clean up or escape Duplication Post Suffix settings before output. An attacker could use this vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress duplicate page plugin | le | 4.4.2 |
Related
wpvulndb
wpvulndb
Duplicate Page < 4.4.3 - Admin+ Stored Cross-Site Scripting
2021-08-28 00:00:00
wpexploit
wpexploit
Duplicate Page < 4.4.3 - Admin+ Stored Cross-Site Scripting
2021-08-28 00:00:00
openvas
openvas
WordPress Duplicate Page Plugin < 4.4.3 XSS Vulnerability
2021-10-29 00:00:00
patchstack
patchstack
prion
prion
Cross site scripting
2021-10-11 11:15:00
nvd
nvd
CVE-2021-24681
2021-10-11 11:15:09
cve
cve
CVE-2021-24681
2021-10-11 11:15:09
cvelist
cvelist
CVE-2021-24681 Duplicate Page <= 4.4.2 - Admin+ Stored Cross-Site Scripting
2021-10-11 10:45:37