Lucene search
K

5 matches found

OSV
OSV
added 2021/10/18 2:15 p.m.2 views

CVE-2021-24760

The Gutenberg PDF Viewer Block WordPress plugin before 1.0.1 does not sanitise and escape its block, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks...

5.4CVSS5.8AI score0.00629EPSS
Exploits2References1
Cvelist
Cvelist
added 2021/10/18 1:46 p.m.17 views

CVE-2021-24760 Gutenberg PDF Viewer Block < 1.0.1 - Contributor+ Stored Cross-Site Scripting

The Gutenberg PDF Viewer Block WordPress plugin before 1.0.1 does not sanitise and escape its block, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks...

5.5AI score0.00629EPSS
Exploits2References1
CNNVD
CNNVD
added 2021/10/18 12:0 a.m.1 views

WordPress 插件 跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL server set up a personal blog site.WordPress plugin is a WordPress open source application plugin. The WordPress plugin Gutenberg PDF Viewer Block suffers from a...

5.4CVSS5.5AI score0.00629EPSS
Exploits2References2
Patchstack
Patchstack
added 2021/09/20 12:0 a.m.21 views

WordPress Gutenberg PDF Viewer Block plugin <= 1.0 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered by apple502j in WordPress Gutenberg PDF Viewer Block plugin versions = 1.0. Solution Update the WordPress Gutenberg PDF Viewer Block plugin to the latest available version at least 1.0.1...

5.4CVSS2.5AI score0.00629EPSS
Exploits2References3Affected Software1
WPVulnDB
WPVulnDB
added 2021/09/20 12:0 a.m.13 views

Gutenberg PDF Viewer Block < 1.0.1 - Contributor+ Stored Cross-Site Scripting

The plugin does not sanitise and escape its block, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks. PoC...

5.4CVSS2.5AI score0.00629EPSS
Exploits2Affected Software1
Rows per page
Query Builder