Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackHosein_vitaPATCHSTACK:72442C545D566B6B90B55456E1E30C1F
HistoryApr 08, 2021 - 12:00 a.m.

WordPress Stop Spammers plugin <= 2021.8 - Reflected Cross-Site Scripting (XSS) vulnerability

2021-04-0800:00:00
Hosein_vita
patchstack.com
5

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

JSON

Reflected Cross-Site Scripting (XSS) vulnerability discovered by Hosein_vita in WordPress Stop Spammers plugin (versions <= 2021.8).

Solution

           Update the WordPress Stop Spammers plugin to the latest available version (at least 2021.9).
CPENameOperatorVersion
stop spammersle2021.8

Related

wpvulndb 1
packetstorm 1
checkpoint_advisories 1
wpexploit 1
zdt 1
cve 1
nuclei 1
prion 1
exploitdb 1
wpvulndb
wpvulndb
Stop Spammers < 2021.9 - Reflected Cross-Site Scripting (XSS)
2021-04-08 00:00:00
packetstorm
packetstorm
WordPress Stop Spammers 2021.8 Cross Site Scripting
2021-05-19 00:00:00
checkpoint_advisories
checkpoint_advisories
WordPress Stop Spammers Plugin Cross Site Scripting (CVE-2021-24245)
2021-06-01 00:00:00
wpexploit
wpexploit
Stop Spammers < 2021.9 - Reflected Cross-Site Scripting (XSS)
2021-04-08 00:00:00
zdt
zdt
WordPress Stop Spammers 2021.8 Plugin - (log) Reflected Cross-site Scripting Vulnerability
2021-05-19 00:00:00
cve
cve
CVE-2021-24245
2021-05-06 13:15:00
nuclei
nuclei
WordPress Stop Spammers <2021.9 - Cross-Site Scripting
2022-06-02 10:25:19
prion
prion
Cross site scripting
2021-05-06 13:15:00
exploitdb
exploitdb
WordPress Plugin Stop Spammers 2021.8 - &#039;log&#039; Reflected Cross-site Scripting (XSS)
2021-05-19 00:00:00

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

JSON
Related for PATCHSTACK:72442C545D566B6B90B55456E1E30C1F
wpvulndb1packetstorm1checkpoint_advisories1wpexploit1zdt1cve1nuclei1prion1exploitdb1