Lucene search
PatchstackCVELIST:CVE-2021-36920HistoryJan 11, 2022 - 12:00 a.m.
CVE-2021-36920 WordPress plugin Download Monitor <= 4.4.6 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability
2022-01-1100:00:00
CWE-79
Patchstack
www.cve.org
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
19.5%
Authenticated Reflected Cross-Site Scripting (XSS) vulnerability discovered in WordPress plugin Download Monitor (versions <= 4.4.6).
CNA Affected
[
{
"product": "Download Monitor (WordPress plugin)",
"vendor": "WPChill",
"versions": [
{
"lessThanOrEqual": "4.4.6",
"status": "affected",
"version": "<= 4.4.6",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2021-36920
2022-01-14 20:15:10
prion
prion
Cross site scripting
2022-01-14 20:15:00
wpvulndb
wpvulndb
Download Monitor < 4.4.7 - Reflected Cross-Site Scripting
2022-01-14 00:00:00
patchstack
patchstack
openvas
openvas
WordPress Download Monitor Plugin < 4.4.7 XSS Vulnerability
2022-01-18 00:00:00
nvd
nvd
CVE-2021-36920
2022-01-14 20:15:10
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
19.5%
Related for CVELIST:CVE-2021-36920