Lucene search
K

4 matches found

NVD
NVD
added 2021/09/10 2:15 p.m.19 views

CVE-2021-38348

The Advance Search WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the wpasid parameter found in the /inc/admin/views/html-advance-search-admin-options.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.1.2...

6.1CVSS0.00895EPSS
Exploits1References2
CVE
CVE
added 2021/09/10 1:32 p.m.49 views

CVE-2021-38348

The CVE-2021-38348 entry describes a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress Advanced Search plugin (versions up to and including 1.1.2) due to the wpas_id parameter in the file ~/inc/admin/views/html-advance-search-admin-options.php. The underlying issue is a reflecte...

6.1CVSS6AI score0.00895EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/09/10 1:32 p.m.27 views

CVE-2021-38348 Advance Search <= 1.1.2 Reflected Cross-Site Scripting

The Advance Search WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the wpasid parameter found in the /inc/admin/views/html-advance-search-admin-options.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.1.2...

6.1CVSS6.2AI score0.00895EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2021/09/10 1:32 p.m.7 views

CVE-2021-38348 Advance Search <= 1.1.2 Reflected Cross-Site Scripting

The Advance Search WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the wpasid parameter found in the /inc/admin/views/html-advance-search-admin-options.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.1.2...

6.1CVSS6.1AI score0.00895EPSS
Exploits1References2
Rows per page
Query Builder