Lucene search
PRIOn knowledge basePRION:CVE-2021-25026HistoryMar 14, 2022 - 3:15 p.m.
Cross site scripting
2022-03-1415:15:00
PRIOn knowledge base
www.prio-n.com
6
0.001 Low
EPSS
Percentile
21.5%
The Patreon WordPress plugin before 1.8.2 does not sanitise and escape the field “Custom Patreon Page name”, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
| CPE | Name | Operator | Version |
|---|---|---|---|
| patreon_wordpress | lt | 1.8.2 |
Related
wpvulndb
wpvulndb
Patreon WordPress < 1.8.2 - Admin+ Stored Cross-Site Scripting
2022-02-21 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2021-25026
2022-03-14 15:15:09
cve
cve
CVE-2021-25026
2022-03-14 15:15:09
cnvd
cnvd
WordPress Patreon plugin cross-site scripting vulnerability
2022-03-16 00:00:00
wpexploit
wpexploit
Patreon WordPress < 1.8.2 - Admin+ Stored Cross-Site Scripting
2022-02-21 00:00:00
patchstack
patchstack