Lucene search
Krzysztof ZającPATCHSTACK:51BA7384464C0E901BBB137785ABE706HistoryJan 24, 2022 - 12:00 a.m.
WordPress Duplicate Page or Post plugin <= 1.5.0 - Arbitrary Settings Update leading to Stored Cross-Site Scripting (XSS) vulnerability
2022-01-2400:00:00
Krzysztof Zając
patchstack.com
8
0.001 Low
EPSS
Percentile
30.9%
Arbitrary Settings Update leading to Stored Cross-Site Scripting (XSS) vulnerability discovered by Krzysztof Zając in WordPress Duplicate Page or Post plugin (versions <= 1.5.0).
Solution
Update the WordPress Duplicate Page or Post plugin to the latest available version (at least 1.5.1).
| CPE | Name | Operator | Version |
|---|---|---|---|
| duplicate page or post | le | 1.5.0 |
Related
cnvd
cnvd
WordPress插件Duplicate Page or Post跨站脚本漏洞
2022-02-23 00:00:00
nuclei
nuclei
WordPress Duplicate Page or Post <1.5.1 - Cross-Site Scripting
2022-05-14 23:02:53
wpexploit
wpexploit
Duplicate Page or Post < 1.5.1 - Arbitrary Settings Update to Stored XSS
2022-01-24 00:00:00
prion
prion
Cross site scripting
2022-02-21 11:15:00
nvd
nvd
CVE-2021-25075
2022-02-21 11:15:08
wpvulndb
wpvulndb
Duplicate Page or Post < 1.5.1 - Arbitrary Settings Update to Stored XSS
2022-01-24 00:00:00
cvelist
cvelist
cve
cve
CVE-2021-25075
2022-02-21 11:15:08
kitploit
kitploit
Wpgarlic - A Proof-Of-Concept WordPress Plugin Fuzzer
2022-04-25 21:30:00