Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2019-16332
HistorySep 15, 2019 - 10:15 p.m.

Cross site scripting

2019-09-1522:15:00
PRIOn knowledge base
www.prio-n.com
3

0.003 Low

EPSS

Percentile

69.8%

JSON

In the api-bearer-auth plugin before 20190907 for WordPress, the server parameter is not correctly filtered in the swagger-config.yaml.php file, and it is possible to inject JavaScript code, aka XSS.

CPENameOperatorVersion
api_bearer_autheq< 201997

Related

nvd 1
wpvulndb 1
wpexploit 1
cve 1
nuclei 1
cvelist 1
nvd
nvd
CVE-2019-16332
2019-09-15 22:15:10
wpvulndb
wpvulndb
API Bearer Auth <= 20181229 - Unauthenticated Reflected XSS
2019-09-05 00:00:00
wpexploit
wpexploit
API Bearer Auth <= 20181229 - Unauthenticated Reflected XSS
2019-09-05 00:00:00
cve
cve
CVE-2019-16332
2019-09-15 22:15:10
nuclei
nuclei
WordPress API Bearer Auth <20190907 - Cross-Site Scripting
2021-07-15 17:06:33
cvelist
cvelist
CVE-2019-16332
2019-09-15 21:00:40

0.003 Low

EPSS

Percentile

69.8%

JSON
Related for PRION:CVE-2019-16332
nvd1wpvulndb1wpexploit1cve1nuclei1cvelist1