CVE-2021-25120 Easy Social Feed < 6.2.7 - Reflected Cross-Site Scripting

🗓️ 18 Apr 2022 17:10:26Reported by WPScanType

Easy Social Feed plugin version < 6.2.7 XSS vulnerabilit

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2021-25120	18 Apr 202222:24	–	circl
CNNVD	WordPress plugins Easy Social Feed Free 跨站脚本漏洞	18 Apr 202200:00	–	cnnvd
CNVD	WordPress Easy Social Feed Free plugin跨站脚本漏洞	20 Apr 202200:00	–	cnvd
CVE	CVE-2021-25120	18 Apr 202217:10	–	cve
Nuclei	Easy Social Feed < 6.2.7 - Cross-Site Scripting	30 Jun 202604:56	–	nuclei
NVD	CVE-2021-25120	18 Apr 202218:15	–	nvd
OSV	CVE-2021-25120	18 Apr 202218:15	–	osv
Prion	Cross site scripting	18 Apr 202218:15	–	prion
RedhatCVE	CVE-2021-25120	22 May 202520:31	–	redhatcve

[
  {
    "product": "Easy Social Feed Pro",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "6.2.7",
        "status": "affected",
        "version": "6.2.7",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Easy Social Feed – Social Photos Gallery – Post Feed – Like Box",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "6.2.7",
        "status": "affected",
        "version": "6.2.7",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
wpscan	www.wpscan.com/vulnerability/0ad020b5-0d16-4521-8ea7-39cd206ab9f6

18 Apr 2022 17:10Current

6.3Medium risk

Vulners AI Score6.3

EPSS0.02856

CWE-79