Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackLarry W. CashdollarPATCHSTACK:49936A5C4FF871074D56FC3EDF95B8E8
HistoryApr 13, 2016 - 12:00 a.m.

WordPress E-Search Plugin <= 1.0 - Cross-Site Scripting (XSS)

2016-04-1300:00:00
Larry W. Cashdollar
patchstack.com
3

0.001 Low

EPSS

Percentile

50.3%

JSON

Because of this vulnerability, the variable date-from appears to send unsanitized data back to the users browser.

Solution

           Update the plugin.
CPENameOperatorVersion
e-searchle1.0

Related

cvelist 1
cve 1
prion 1
nvd 1
nuclei 1
wpexploit 1
wpvulndb 1
cvelist
cvelist
CVE-2016-1000131
2016-10-10 20:00:00
cve
cve
CVE-2016-1000131
2016-10-10 20:59:06
prion
prion
Cross site scripting
2016-10-10 20:59:00
nvd
nvd
CVE-2016-1000131
2016-10-10 20:59:06
nuclei
nuclei
WordPress e-search <=1.0 - Cross-Site Scripting
2021-07-16 17:55:47
wpexploit
wpexploit
e-search <= 1.0 - Unauthenticated Reflected Cross-Site Scripting (XSS)
2016-04-13 00:00:00
wpvulndb
wpvulndb
e-search <= 1.0 - Unauthenticated Reflected Cross-Site Scripting (XSS)
2016-04-13 00:00:00

0.001 Low

EPSS

Percentile

50.3%

JSON
Related for PATCHSTACK:49936A5C4FF871074D56FC3EDF95B8E8
cvelist1cve1prion1nvd1nuclei1wpexploit1wpvulndb1