2 matches found
CVE-2021-34660 WP Fusion Lite <= 3.37.18 Reflected Cross-Site Scripting
The WP Fusion Lite WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the startdate parameter found in the /includes/admin/logging/class-log-table-list.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.37.18...
CVE-2021-34660
WP Fusion Lite WordPress plugin is affected by CVE-2021-34660. The vulnerability is a Reflected Cross-Site Scripting via the startdate parameter in the file ~/includes/admin/logging/class-log-table-list.php, affecting versions up to 3.37.18. The impact is injection of arbitrary web scripts in an ...