Lucene search

K

PRIOn knowledge basePRION:CVE-2021-38323

HistorySep 09, 2021 - 7:15 p.m.

Cross site scripting

2021-09-0919:15:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

32.9%

The RentPress WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the selections parameter found in the ~/src/rentPress/AjaxRequests.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 6.6.4.

CPENameOperatorVersion
rentpressle6.6.4

References

plugins.trac.wordpress.org/browser/rentpress/tags/6.6.4/src/rentPress/AjaxRequests.php

www.wordfence.com/vulnerability-advisories/

0.001 Low

EPSS

Percentile

32.9%

Related for PRION:CVE-2021-38323

cve1 patchstack1 wpvulndb1 cvelist1 nvd1