Lucene search
CVE-2020-13644
An issue in Accordion plugin for WordPress version 2.2.9 allows authenticated users to inject malicious JavaScript
Show more
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | CVE-2020-13644 | 28 May 202004:15 | – | cve |
 | Authentication flaw | 28 May 202004:15 | – | prion |
 | WordPress Accordion Plugin < 2.2.9 XSS Vulnerability | 29 May 202000:00 | – | openvas |
 | Accordion < 2.2.9 - Unprotected AJAX Action to Stored/Reflected XSS | 14 Apr 202000:00 | – | wpexploit |
 | CVE-2020-13644 | 28 May 202004:15 | – | nvd |
 | Accordion < 2.2.9 - Unprotected AJAX Action to Stored/Reflected XSS | 14 Apr 202000:00 | – | wpvulndb |
 | WordPress Accordion plugin <= 2.2.8 - Unprotected AJAX Action leading to Stored/Reflected Cross-Site Scripting (XSS) vulnerability | 14 Apr 202000:00 | – | patchstack |
| Source | Link |
|---|---|
| wordpress | www.wordpress.org/plugins/accordions/ |
| wordfence | www.wordfence.com/blog/2020/04/vulnerability-patched-in-accordion-plugin/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo28 May 2020 03:11Current
5.3Medium risk
Vulners AI Score5.3
CVSS35.4
EPSS0.001