Lucene search
PRIOn knowledge basePRION:CVE-2021-38340HistorySep 10, 2021 - 2:15 p.m.
Cross site scripting
2021-09-1014:15:00
PRIOn knowledge base
www.prio-n.com
1
0.001 Low
EPSS
Percentile
32.8%
The Wordpress Simple Shop WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the update_row parameter found in the ~/includes/add_product.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.2.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress_simple_shop | le | 1.2 |
Related
patchstack
patchstack
wpvulndb
wpvulndb
WordPress Simple Shop <= 1.2 - Reflected Cross-Site Scripting
2021-09-09 00:00:00
cvelist
cvelist
CVE-2021-38340 Wordpress Simple Shop <= 1.2 Reflected Cross-Site Scripting
2021-09-09 00:00:00
cve
cve
CVE-2021-38340
2021-09-10 14:15:10
nvd
nvd
CVE-2021-38340
2021-09-10 14:15:10