CVE-2021-20749

🗓️ 28 Jun 2021 00:50:37Reported by jpcertType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 150 Views

Cross-site scripting vulnerability in Fudousan plugin ver5.7.0 and earlie

Reporter	Title	Published	Views	Family All 14
Circl	CVE-2021-20749	28 Jun 202107:22	–	circl
CNNVD	Wordpress 插件跨站脚本漏洞	22 Jun 202100:00	–	cnnvd
Cvelist	CVE-2021-20749	28 Jun 202100:50	–	cvelist
EUVD	EUVD-2021-8163	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	JVN#93799513: WordPress plugin "Fudousan plugin" series vulnerable to cross-site scripting	22 Jun 202100:00	–	jvn
Japan Vulnerability Notes	WordPress plugin "Fudousan plugin" series vulnerable to cross-site scripting	22 Jun 202106:06	–	jvn
NVD	CVE-2021-20749	28 Jun 202101:15	–	nvd
OSV	CVE-2021-20749	28 Jun 202101:15	–	osv
Patchstack	WordPress Fudousan plugin <= 5.7.0 - Authenticated Cross-Site Scripting (XSS) vulnerability	22 Jun 202100:00	–	patchstack
Patchstack	WordPress Fudousan Pro (single) premium plugin <= 5.7.0 - Authenticated Cross-Site Scripting (XSS) vulnerability	22 Jun 202100:00	–	patchstack

NVD

Vulners

Node

nendeb fudousan_pluginRange≤5.7.0

nendeb fudousan_plugin_pro_multi-userRange≤5.7.0

nendeb fudousan_plugin_pro_single-userRange≤5.7.0

[
  {
    "product": "'Fudousan plugin' series",
    "vendor": "nendeb",
    "versions": [
      {
        "status": "affected",
        "version": "Fudousan plugin ver5.7.0 and earlier, Fudousan Plugin Pro Single-User Type ver5.7.0 and earlier, and Fudousan Plugin Pro Multi-User Type ver5.7.0 and earlier"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/jp/JVN93799513/index.html
nendeb-biz	www.nendeb-biz.jp/2021-0617-1200/
nendeb	www.nendeb.jp/fudou

21 Nov 2024 05:47Current

5Medium risk

Vulners AI Score5

CVSS 23.5

CVSS 3.15.4

EPSS0.00249

CWE-79