Lucene search
M0ze (Patchstack Red Team)PATCHSTACK:D6551EF8F6DABB455A09F3AB412978D9HistoryApr 29, 2021 - 12:00 a.m.
WordPress Funnel Builder by CartFlows plugin <= 1.6.12 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
2021-04-2900:00:00
m0ze (Patchstack Red Team)
patchstack.com
12
0.001 Low
EPSS
Percentile
24.8%
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by m0ze in WordPress Funnel Builder by CartFlows plugin (versions <= 1.6.12).
Solution
Update the WordPress Funnel Builder by CartFlows plugin to the latest available version (at least 1.6.13).
| CPE | Name | Operator | Version |
|---|---|---|---|
| funnel builder by cartflows | le | 1.6.12 |
Related
openvas
openvas
WordPress Funnel Builder Plugin < 1.6.13 XSS Vulnerability
2021-06-22 00:00:00
nvd
nvd
CVE-2021-24330
2021-06-01 14:15:09
cvelist
cvelist
wpvulndb
wpvulndb
cve
cve
CVE-2021-24330
2021-06-01 14:15:09
prion
prion
Cross site scripting
2021-06-01 14:15:00
wpexploit
wpexploit