Lucene search
JrXnmPATCHSTACK:6844D6D8A74BD00E3926B33E9B3B3186HistoryDec 27, 2021 - 12:00 a.m.
WordPress WP Extra File Types plugin <= 0.5 - Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS)
2021-12-2700:00:00
JrXnm
patchstack.com
10
0.001 Low
EPSS
Percentile
32.2%
Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) discovered by JrXnm in WordPress WP Extra File Types plugin (versions <= 0.5).
Solution
Update the WordPress WP Extra File Types plugin to the latest available version (at least 0.5.1).
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp extra file types | le | 0.5 |
Related
cve
cve
CVE-2021-24936
2022-01-24 08:15:08
cnvd
cnvd
openvas
openvas
WordPress WP Extra File Types Plugin < 0.5.1 CSRF Vulnerability
2023-09-25 00:00:00
wpvulndb
wpvulndb
WP Extra File Types < 0.5.1 - CSRF to Stored Cross-Site Scripting
2021-12-27 00:00:00
wpexploit
wpexploit
WP Extra File Types < 0.5.1 - CSRF to Stored Cross-Site Scripting
2021-12-27 00:00:00
prion
prion
Cross site scripting
2022-01-24 08:15:00
nvd
nvd
CVE-2021-24936
2022-01-24 08:15:08
cvelist
cvelist