Lucene search
Zander WorkPATCHSTACK:AE5FC08F0FA2F3EA9E30A62F2E8891B5HistoryJul 09, 2020 - 12:00 a.m.
WordPress Knight Lab Timeline plugin <= 3.6.3.0 - Stored Cross-Site Scripting (XSS) vulnerability
2020-07-0900:00:00
Zander Work
patchstack.com
4
0.001 Low
EPSS
Percentile
22.7%
Stored Cross-Site Scripting (XSS) vulnerability (vulnerable TimelineJS library version) discovered in WordPress Knight Lab Timeline plugin (versions <= 3.6.3.0).
Solution
Update the WordPress Knight Lab Timeline plugin to the latest available version (at least 3.7.0.0).
| CPE | Name | Operator | Version |
|---|---|---|---|
| knight lab timeline | le | 3.6.3.0 |
Related
githubexploit
githubexploit
Exploit for Cross-site Scripting in Northwestern Timelinejs
2020-12-01 09:45:48
veracode
veracode
Cross-Site Scripting (XSS)
2020-07-13 02:47:14
nvd
nvd
CVE-2020-15092
2020-07-09 19:15:11
prion
prion
Design/Logic Flaw
2020-07-09 19:15:00
cvelist
cvelist
CVE-2020-15092 Stored XSS in TimelineJS3
2020-07-09 18:25:12
wpvulndb
wpvulndb
osv
osv
Stored XSS in TimelineJS3
2020-07-09 18:28:07
CVE-2020-15092
2020-07-09 19:15:11
cve
cve
CVE-2020-15092
2020-07-09 19:15:11
github
github
Stored XSS in TimelineJS3
2020-07-09 18:28:07