Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:5 p.m.11 views

CVE-2021-24426

The Backup by 10Web – Backup and Restore Plugin WordPress plugin through 1.0.20 does not sanitise or escape the tab parameter before outputting it back in the page, leading to a reflected Cross-Site Scripting issue...

4.8CVSS6.1AI score0.00626EPSS
Exploits2References1
CNVD
CNVD
added 2021/07/14 12:0 a.m.16 views

WordPress plugin has an unspecified vulnerability (CNVD-2021-59599)

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress Plugin is a WordPress open source application plugin. Backup by 10Web WordPress Plugin 1.0.20 and earlier has...

4.8CVSS1.4AI score0.00626EPSS
Exploits2References1
Prion
Prion
added 2021/07/12 8:15 p.m.21 views

Cross site scripting

The Backup by 10Web – Backup and Restore Plugin WordPress plugin through 1.0.20 does not sanitise or escape the tab parameter before outputting it back in the page, leading to a reflected Cross-Site Scripting issue...

3.5CVSS5AI score0.00626EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2021/07/12 7:20 p.m.54 views

CVE-2021-24426

The CVE-2021-24426 issue affects the WordPress plugin Backup by 10Web – Backup and Restore (versions up to 1.0.20). The underlying flaw is failure to sanitize/escape the tab parameter before echoing it in the page, which enables a reflected Cross-Site Scripting (XSS) vulnerability. Several connec...

4.8CVSS4.9AI score0.00626EPSS
Exploits2References2Affected Software1
WPVulnDB
WPVulnDB
added 2021/06/16 12:0 a.m.16 views

Backup by 10Web <= 1.0.20 - Reflected Cross-Site Scripting (XSS)

The plugin does not sanitise or escape the tab parameter before outputting it back in the page, leading to a reflected Cross-Site Scripting issue PoC http://example.com/wp-admin/admin.php?page=buwdrestore=general%22%3E%3Cimg%20src=x%20onerror=alertdocument.domain;%20m0ze...

4.8CVSS0.1AI score0.00626EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder