Lucene search
K

5 matches found

Nuclei
Nuclei
added 6 hours ago41 views

WordPress JH 404 Logger <=1.1 - Cross-Site Scripting

WordPress JH 404 Logger plugin through 1.1 contains a cross-site scripting vulnerability. Referer and path of 404 pages are not properly sanitized when they are output in the WordPress dashboard, which can lead to executing arbitrary JavaScript code. id: CVE-2021-24176 info: name: WordPress JH 40...

5.4CVSS6.1AI score0.02044EPSS
Exploits2References5
RedhatCVE
RedhatCVE
added 2025/05/22 7:20 p.m.11 views

CVE-2021-24176

The JH 404 Logger WordPress plugin through 1.1 doesn't sanitise the referer and path of 404 pages, when they are output in the dashboard, which leads to executing arbitrary JavaScript code in the WordPress dashboard...

5.4CVSS6.9AI score0.02044EPSS
Exploits2References1
Circl
Circl
added 2023/04/27 9:58 a.m.11 views

CVE-2021-24176

creationtimestamp| type| source ---|---|--- 2023-04-27 09:58:59+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-24176.yaml...

5.4CVSS6.8AI score0.02044EPSS
Exploits2References1
CVE
CVE
added 2021/04/05 6:27 p.m.78 views

CVE-2021-24176

Summary: CVE-2021-24176 affects the WordPress JH 404 Logger plugin up to version 1.1. The root cause is that the referer and the path of 404 pages are not sanitized when echoed in the WordPress dashboard, enabling arbitrary JavaScript execution in the dashboard context. Impact: cross-site scripti...

5.4CVSS5.5AI score0.02044EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2021/04/05 6:27 p.m.23 views

CVE-2021-24176 JH 404 Logger <= 1.1 - Unauthenticated Stored Cross-Site Scripting (XSS)

The JH 404 Logger WordPress plugin through 1.1 doesn't sanitise the referer and path of 404 pages, when they are output in the dashboard, which leads to executing arbitrary JavaScript code in the WordPress dashboard...

5.8AI score0.02044EPSS
Exploits2References2
Rows per page
Query Builder