3 matches found
CVE-2021-34644
The Multiplayer Games WordPress plugin is vulnerable to Reflected Cross-Site Scripting due to the use of $SERVER'PHPSELF' in the /multiplayergames.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.7...
CVE-2021-34644 Multiplayer Games <= 3.7 Reflected Cross-Site Scripting
The Multiplayer Games WordPress plugin is vulnerable to Reflected Cross-Site Scripting due to the use of $SERVER'PHPSELF' in the /multiplayergames.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.7...
CVE-2021-34644
The CVE-2021-34644 entry relates to the WordPress plugin Multiplayer Games, affected up to version 3.7. The vulnerability is a Reflected Cross-Site Scripting (XSS) flaw caused by the use of $_SERVER['PHP_SELF'] in the multiplayergames.php file, enabling attackers to inject arbitrary web scripts. ...