Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2019-16332
HistorySep 15, 2019 - 9:00 p.m.

CVE-2019-16332

2019-09-1521:00:40
mitre
www.cve.org
1

0.003 Low

EPSS

Percentile

69.8%

JSON

In the api-bearer-auth plugin before 20190907 for WordPress, the server parameter is not correctly filtered in the swagger-config.yaml.php file, and it is possible to inject JavaScript code, aka XSS.

Related

nvd 1
wpvulndb 1
wpexploit 1
cve 1
prion 1
nuclei 1
nvd
nvd
CVE-2019-16332
2019-09-15 22:15:10
wpvulndb
wpvulndb
API Bearer Auth <= 20181229 - Unauthenticated Reflected XSS
2019-09-05 00:00:00
wpexploit
wpexploit
API Bearer Auth <= 20181229 - Unauthenticated Reflected XSS
2019-09-05 00:00:00
cve
cve
CVE-2019-16332
2019-09-15 22:15:10
prion
prion
Cross site scripting
2019-09-15 22:15:00
nuclei
nuclei
WordPress API Bearer Auth <20190907 - Cross-Site Scripting
2021-07-15 17:06:33

0.003 Low

EPSS

Percentile

69.8%

JSON
Related for CVELIST:CVE-2019-16332
nvd1wpvulndb1wpexploit1cve1prion1nuclei1