3 matches found
CVE-2021-38332
creationtimestamp| type| source ---|---|--- 2021-09-10 18:31:00+00:00| seen| https://t.me/cibsecurity/28670 2025-05-02 20:16:42+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14591...
CVE-2021-38332
The CVE relates to the WordPress plugin “On Page SEO + Whatsapp Chat Button” (versions up to 1.0.1) which is vulnerable to Reflected Cross-Site Scripting due to a reflected $_SERVER["PHP_SELF"] value in settings.php. The underlying flaw enables attackers to inject arbitrary scripts in contexts wh...
CVE-2021-38332 On Page SEO + Whatsapp Chat Button <= 1.0.1 Reflected Cross-Site Scripting
The On Page SEO + Whatsapp Chat Button Plugin WordPress plugin is vulnerable to Reflected Cross-Site Scripting due to a reflected $SERVER"PHPSELF" value in the /settings.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.0.1...