Lucene search
+L

6 matches found

Nuclei
Nuclei
added yesterday100 views

WordPress Supsystic Ultimate Maps <1.2.5 - Cross-Site Scripting

WordPress Supsystic Ultimate Maps plugin before 1.2.5 contains an unauthenticated reflected cross-site scripting vulnerability due to improper sanitization of the tab parameter on the options page before outputting it in an attribute. id: CVE-2021-24274 info: name: WordPress Supsystic Ultimate Ma...

6.1CVSS5.8AI score0.17638EPSS
Exploits5References5
RedhatCVE
RedhatCVE
added 2025/05/22 7:21 p.m.14 views

CVE-2021-24274

The Ultimate Maps by Supsystic WordPress plugin before 1.2.5 did not sanitise the tab parameter of its options page before outputting it in an attribute, leading to a reflected Cross-Site Scripting issue...

6.1CVSS6.1AI score0.17638EPSS
Exploits5References1
Packet Storm
Packet Storm
added 2021/09/28 12:0 a.m.234 views

WordPress Ultimate Maps 1.2.4 Cross Site Scripting

Exploit Title: WordPress Plugin Ultimate Maps 1.2.4 - Reflected Cross-Site Scripting XSS Date: 3/28/2021 Author: 0xB9 Software Link: https://wordpress.org/plugins/ultimate-maps-by-supsystic/ Version: 1.2.4 Tested on: Windows 10 CVE: CVE-2021-24274 1. Description: The plugin did not sanitize the t...

6.1CVSS0.17638EPSS
Exploits5
NVD
NVD
added 2021/05/05 7:15 p.m.47 views

CVE-2021-24274

The Ultimate Maps by Supsystic WordPress plugin before 1.2.5 did not sanitise the tab parameter of its options page before outputting it in an attribute, leading to a reflected Cross-Site Scripting issue...

6.1CVSS0.17638EPSS
Exploits5References2
Cvelist
Cvelist
added 2021/05/05 6:28 p.m.46 views

CVE-2021-24274 Ultimate Maps by Supsystic < 1.2.5 - Reflected Cross-Site scripting (XSS)

The Ultimate Maps by Supsystic WordPress plugin before 1.2.5 did not sanitise the tab parameter of its options page before outputting it in an attribute, leading to a reflected Cross-Site Scripting issue...

6.2AI score0.17638EPSS
Exploits5References2
CVE
CVE
added 2021/05/05 6:28 p.m.122 views

CVE-2021-24274

The CVE-2021-24274 entry refers to the WordPress plugin Ultimate Maps by Supsystic (versions before 1.2.5). The vulnerability is a reflected Cross-Site Scripting (XSS) due to improper sanitization of the tab parameter on the plugin’s options page before output in an attribute. Affected component:...

6.1CVSS6AI score0.17638EPSS
Exploits5References2Affected Software1
Rows per page
Query Builder