Lucene search

K
patchstackKrzysztof ZającPATCHSTACK:CD6BCF50F9BA268B74F823806E71910E
HistoryNov 29, 2021 - 12:00 a.m.

WordPress WP RSS Aggregator plugin <= 4.19.2 - Stored Cross-Site Scripting (XSS) vulnerability

2021-11-2900:00:00
Krzysztof Zając
patchstack.com
8
wordpress
rss aggregator
cross-site scripting
vulnerability
krzysztof zając
update

EPSS

0.001

Percentile

21.2%

Stored Cross-Site Scripting (XSS) vulnerability discovered by Krzysztof Zając in WordPress WP RSS Aggregator plugin (versions <= 4.19.2).

Solution

           Update the WordPress WP RSS Aggregator plugin to the latest available version (at least 4.19.3).

Affected configurations

Vulners
Node
rss_aggregatorwp_rss_aggregatorRange4.19.2
VendorProductVersionCPE
rss_aggregatorwp_rss_aggregator*cpe:2.3:a:rss_aggregator:wp_rss_aggregator:*:*:*:*:*:*:*:*

EPSS

0.001

Percentile

21.2%

Related for PATCHSTACK:CD6BCF50F9BA268B74F823806E71910E