Lucene search
WPScanCVELIST:CVE-2021-24976HistoryJan 24, 2022 - 8:01 a.m.
CVE-2021-24976 Smart SEO Tool < 3.0.6 - Reflected Cross-Site Scripting
2022-01-2408:01:02
CWE-79
WPScan
www.cve.org
4
smart seo tool
wordpress
plugin
vulnerability
reflected cross-site scripting
EPSS
0.001
Percentile
31.7%
The Smart SEO Tool WordPress plugin before 3.0.6 does not sanitise and escape the search parameter before outputting it back in an attribute when the TDK optimisation setting is enabled, leading to a Reflected Cross-Site Scripting
CNA Affected
[
{
"product": "Smart SEO Tool β SEOδΌεζδ»Ά",
"vendor": "Unknown",
"versions": [
{
"lessThan": "3.0.6",
"status": "affected",
"version": "3.0.6",
"versionType": "custom"
}
]
}
]Related
patchstack
patchstack
nvd
nvd
CVE-2021-24976
2022-01-24 08:15:09
wpvulndb
wpvulndb
Smart SEO Tool < 3.0.6 - Reflected Cross-Site Scripting
2021-12-22 00:00:00
cve
cve
CVE-2021-24976
2022-01-24 08:15:09
prion
prion
Cross site scripting
2022-01-24 08:15:00
wpexploit
wpexploit
Smart SEO Tool < 3.0.6 - Reflected Cross-Site Scripting
2021-12-22 00:00:00
cnvd
cnvd
WordPress Smart SEO Tool plugin cross-site scripting vulnerability
2022-01-26 00:00:00