ID CVE-2019-17385
Type cve
Reporter cve@mitre.org
Modified 2019-10-09T21:00:00
Description
The animate-it plugin before 2.3.5 for WordPress has XSS.
{"id": "CVE-2019-17385", "bulletinFamily": "NVD", "title": "CVE-2019-17385", "description": "The animate-it plugin before 2.3.5 for WordPress has XSS.", "published": "2019-10-09T16:15:00", "modified": "2019-10-09T21:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-17385", "reporter": "cve@mitre.org", "references": ["https://wordpress.org/plugins/animate-it/#developers", "https://wpvulndb.com/vulnerabilities/9900"], "cvelist": ["CVE-2019-17385"], "type": "cve", "lastseen": "2019-10-11T11:46:30", "history": [{"bulletin": {"affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cvelist": ["CVE-2019-17385"], "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "cwe": ["CWE-79"], "description": "The animate-it plugin before 2.3.5 for WordPress has XSS.", "edition": 1, "enchantments": {"dependencies": {"modified": "2019-10-10T12:16:21", "references": [{"idList": ["WPVDB-ID:9900"], "type": "wpvulndb"}]}, "score": {"modified": "2019-10-10T12:16:21", "value": 2.2, "vector": "NONE"}}, "hash": "788b935c4af12e4639729f86d63dfd37871dbc9d7e119b209508402eb11d952c", "hashmap": [{"hash": "c4a75287b2751a0583241281cc778d36", "key": "href"}, {"hash": "ae56a77ca83091ada9912880f25b81f4", "key": "description"}, {"hash": "4419eb17de947d4d6b67ac07ed8d9064", "key": "cvss2"}, {"hash": "b7763f401914e653302ea2033f819621", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "762a5ef78f3a4f5930ff445a3109397b", "key": "modified"}, {"hash": "34e69e045b64924bccf865d56b6918a2", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "a3715b395b65065ec1c907a4942b4204", "key": "title"}, {"hash": "cb9f553355d81b52551a4b381440b466", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "f74a1c24e49a5ecb0eefb5e51d4caa14", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "6df625d16c2bedc1d7c0d7441f8135fa", "key": "references"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-17385", "id": "CVE-2019-17385", "lastseen": "2019-10-10T12:16:21", "modified": "2019-10-09T21:00:00", "objectVersion": "1.3", "published": "2019-10-09T16:15:00", "references": ["https://wordpress.org/plugins/animate-it/#developers", "https://wpvulndb.com/vulnerabilities/9900"], "reporter": "cve@mitre.org", "title": "CVE-2019-17385", "type": "cve", "viewCount": 1}, "differentElements": ["cpe", "affectedSoftware"], "edition": 1, "lastseen": "2019-10-10T12:16:21"}], "edition": 2, "hashmap": [{"key": "affectedSoftware", "hash": "bd529c05e401885c0f3fd84f6cc2ef3d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "589afd482e810c54c60eb1b49b053afb"}, {"key": "cpe23", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvelist", "hash": "cb9f553355d81b52551a4b381440b466"}, {"key": "cvss", "hash": "f74a1c24e49a5ecb0eefb5e51d4caa14"}, {"key": "cvss2", "hash": "4419eb17de947d4d6b67ac07ed8d9064"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "34e69e045b64924bccf865d56b6918a2"}, {"key": "description", "hash": "ae56a77ca83091ada9912880f25b81f4"}, {"key": "href", "hash": "c4a75287b2751a0583241281cc778d36"}, {"key": "modified", "hash": "762a5ef78f3a4f5930ff445a3109397b"}, {"key": "published", "hash": "b7763f401914e653302ea2033f819621"}, {"key": "references", "hash": "6df625d16c2bedc1d7c0d7441f8135fa"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "a3715b395b65065ec1c907a4942b4204"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "b911e996ad6e67433ee5007ed2580231702fdeb1959d422d75aed574b0503321", "viewCount": 30, "enchantments": {"dependencies": {"references": [{"type": "wpvulndb", "idList": ["WPVDB-ID:9900"]}], "modified": "2019-10-11T11:46:30", "rev": 2}, "score": {"value": 2.2, "vector": "NONE", "modified": "2019-10-11T11:46:30", "rev": 2}, "vulnersScore": 2.2}, "objectVersion": "1.3", "cpe": ["cpe:/a:eleopard:animate_it!:1.2.1", "cpe:/a:eleopard:animate_it!:2.1.5", "cpe:/a:eleopard:animate_it!:1.4.3", "cpe:/a:eleopard:animate_it!:2.3.2", "cpe:/a:eleopard:animate_it!:2.1.0", "cpe:/a:eleopard:animate_it!:2.1.8", "cpe:/a:eleopard:animate_it!:2.0.4", "cpe:/a:eleopard:animate_it!:2.3.3", "cpe:/a:eleopard:animate_it!:2.1.6", "cpe:/a:eleopard:animate_it!:1.3.3", "cpe:/a:eleopard:animate_it!:2.0.3", "cpe:/a:eleopard:animate_it!:2.0.1", "cpe:/a:eleopard:animate_it!:2.1.2", "cpe:/a:eleopard:animate_it!:2.3.1", "cpe:/a:eleopard:animate_it!:1.3", "cpe:/a:eleopard:animate_it!:2.3.4", "cpe:/a:eleopard:animate_it!:1.4.2", "cpe:/a:eleopard:animate_it!:2.1.1", "cpe:/a:eleopard:animate_it!:1.4.0", "cpe:/a:eleopard:animate_it!:2.0.2", "cpe:/a:eleopard:animate_it!:1.4.1", "cpe:/a:eleopard:animate_it!:2.3.5", "cpe:/a:eleopard:animate_it!:1.4.4", "cpe:/a:eleopard:animate_it!:2.2.0", "cpe:/a:eleopard:animate_it!:2.2.1", "cpe:/a:eleopard:animate_it!:2.0.0", "cpe:/a:eleopard:animate_it!:2.1.9", "cpe:/a:eleopard:animate_it!:2.1.3", "cpe:/a:eleopard:animate_it!:1.1", "cpe:/a:eleopard:animate_it!:2.1.4", "cpe:/a:eleopard:animate_it!:2.1.7", "cpe:/a:eleopard:animate_it!:1.2", "cpe:/a:eleopard:animate_it!:1.0", "cpe:/a:eleopard:animate_it!:1.3.1", "cpe:/a:eleopard:animate_it!:1.3.2", "cpe:/a:eleopard:animate_it!:2.3.0"], "affectedSoftware": [{"name": "eleopard animate_it!", "operator": "eq", "version": "1.3.3"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.2"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.0.1"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.0.2"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.2.1"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.3.2"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.1.1"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.3.3"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.0.0"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.4.1"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.1.8"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.1.7"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.3.4"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.1.0"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.0.3"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.0.4"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.4.2"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.4.4"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.3.1"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.4.0"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.1.4"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.4.3"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.3.5"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.1.6"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.3.2"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.1.9"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.0"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.3"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.1"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.1.2"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.2.1"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.3.0"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.1.5"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "1.3.1"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.2.0"}, {"name": "eleopard animate_it!", "operator": "eq", "version": "2.1.3"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "cpe23": [], "cwe": ["CWE-79"], "scheme": null}
{"wpvulndb": [{"lastseen": "2020-03-16T20:22:56", "bulletinFamily": "software", "description": "WordPress Vulnerability - Animate It < 2.3.6 - XSS\n", "modified": "2019-11-28T00:00:00", "published": "2019-10-09T00:00:00", "id": "WPVDB-ID:9900", "href": "https://wpvulndb.com/vulnerabilities/9900", "type": "wpvulndb", "title": "Animate It < 2.3.6 - XSS", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}]}
