4 matches found
CVE-2021-39345
creationtimestamp| type| source ---|---|--- 2021-10-15 16:28:45+00:00| seen| https://t.me/cibsecurity/30614 2023-12-11 07:09:31+00:00| seen| https://t.me/arpsyndicate/1712...
CVE-2021-39345 HAL <= 2.1.1 Authenticated Stored Cross-Site Scripting
The HAL WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the /wp-hal.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including...
CVE-2021-39345
The CVE-2021-39345 entry concerns the WordPress HAL plugin, affected up to version 2.1.1. The vulnerability is a Stored Cross-Site Scripting flaw in wp-hal.php caused by insufficient input validation/sanitization of several parameters, exploitable by attackers with administrative access. Impact i...
CVE-2021-39345 HAL <= 2.1.1 Authenticated Stored Cross-Site Scripting
The HAL WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the /wp-hal.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including...