Lucene search
China National Vulnerability DatabaseCNVD-2023-05037HistoryMar 16, 2022 - 12:00 a.m.
WordPress Child Theme Generator plugin cross-site scripting vulnerability
2022-03-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
wordpress
child theme generator
cross-site scripting
vulnerability
admin dashboard
php
plugin
attack
EPSS
0.001
Percentile
24.8%
WordPress is a set of blogging platform developed by Wordpress Foundation using PHP language. WordPress plugin is a WordPress application plugin. WordPress Child Theme Generator plugin version 2.2.7 and earlier versions have a cross-site scripting vulnerability that stems from the failure of the Child Theme Generator plugin fails to clean up the parade parameters before exporting them back, which can be exploited by attackers to cause cross-site scripting issues in the admin dashboard.
Related
prion
prion
Cross site scripting
2022-03-14 15:15:00
nvd
nvd
CVE-2021-24982
2022-03-14 15:15:08
cvelist
cvelist
cve
cve
CVE-2021-24982
2022-03-14 15:15:08
wpvulndb
wpvulndb
Child Theme Generator <= 2.2.7 - Reflected Cross-Site Scripting
2021-11-18 00:00:00
patchstack
patchstack
wpexploit
wpexploit
Child Theme Generator <= 2.2.7 - Reflected Cross-Site Scripting
2021-11-18 00:00:00