Lucene search
Naoki Ogawa (Cryptography Laboratory in Tokyo Denki University)PATCHSTACK:391C23039F44F08DE9D47A0BF92DFC33HistoryNov 29, 2021 - 12:00 a.m.
WordPress Stetic plugin <= 1.0.8 - Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS)
2021-11-2900:00:00
Naoki Ogawa (Cryptography Laboratory in Tokyo Denki University)
patchstack.com
8
0.001 Low
EPSS
Percentile
41.9%
Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) discovered by Naoki Ogawa (Cryptography Laboratory in Tokyo Denki University) in WordPress Stetic plugin (versions <= 1.0.8).
Solution
Update the WordPress Stetic plugin to the latest available version (at least 1.0.9).
Related
cve
cve
CVE-2021-42364
2021-11-29 19:15:07
cnvd
cnvd
WordPress Plugin Cross-Site Request Forgery Vulnerability (CNVD-2021-102803)
2021-12-01 00:00:00
wpvulndb
wpvulndb
Stetic < 1.0.9 - CSRF to Stored Cross-Site Scripting
2021-11-29 00:00:00
nvd
nvd
CVE-2021-42364
2021-11-29 19:15:07
prion
prion
Cross site request forgery (csrf)
2021-11-29 19:15:00
cvelist
cvelist