Lucene search
CSWCVELIST:CVE-2021-33852HistoryMar 09, 2022 - 4:54 p.m.
CVE-2021-33852
2022-03-0916:54:43
CWE-79
CSW
www.cve.org
1
0.001 Low
EPSS
Percentile
25.0%
A cross-site scripting (XSS) attack can cause arbitrary code (JavaScript) to run in a user’s browser and can use an application as the vehicle for the attack. The XSS payload given in the “Duplicate Title” text box executes whenever the user opens the Settings Page of the Post Duplicator Plugin or the application root page after duplicating any of the existing posts.
CNA Affected
[
{
"product": "WordPress Post Duplicator Plugin",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Version 2.23"
}
]
}
]Related
wpvulndb
wpvulndb
Post Duplicator < 2.27 - Admin+ Stored Cross-Site Scripting
2021-12-02 00:00:00
nvd
nvd
CVE-2021-33852
2022-03-10 17:42:36
patchstack
patchstack
openvas
openvas
WordPress Post Duplicator Plugin < 2.27 XSS Vulnerability
2022-04-05 00:00:00
cnvd
cnvd
WordPress Plugin Post-Duplicator Plugin Cross-Site Scripting Vulnerability
2022-03-14 00:00:00
prion
prion
Cross site scripting
2022-03-10 17:42:00
cve
cve
CVE-2021-33852
2022-03-10 17:42:36
wpexploit
wpexploit
Post Duplicator < 2.27 - Admin+ Stored Cross-Site Scripting
2021-12-02 00:00:00