Lucene search
K

6 matches found

NVD
NVD
added 2021/09/10 2:15 p.m.19 views

CVE-2021-38357

The SMS OVH WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the position parameter found in the /sms-ovh-sent.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 0.1...

6.1CVSS0.00782EPSS
Exploits0References2
Prion
Prion
added 2021/09/10 2:15 p.m.14 views

Cross site scripting

The SMS OVH WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the position parameter found in the /sms-ovh-sent.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 0.1...

4.3CVSS6.1AI score0.00782EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/09/10 1:34 p.m.46 views

CVE-2021-38357

CVE-2021-38357 affects the WordPress plugin SMS OVH (versions up to and including 0.1). The Reflected Cross‑Site Scripting vulnerability originates in the position parameter in the file ~/sms-ovh-sent.php, enabling injection of arbitrary web scripts. Connected sources consistently describe this i...

6.1CVSS6AI score0.00782EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2021/09/10 1:34 p.m.6 views

CVE-2021-38357 SMS OVH <= 0.1 Reflected Cross-Site Scripting

The SMS OVH WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the position parameter found in the /sms-ovh-sent.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 0.1...

6.1CVSS6.1AI score0.00782EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/09/10 1:34 p.m.22 views

CVE-2021-38357 SMS OVH <= 0.1 Reflected Cross-Site Scripting

The SMS OVH WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the position parameter found in the /sms-ovh-sent.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 0.1...

6.1CVSS6.2AI score0.00782EPSS
Exploits0References2
WPVulnDB
WPVulnDB
added 2021/09/09 12:0 a.m.21 views

SMS OVH <= 0.1 - Reflected Cross-Site Scripting

The plugin is vulnerable to Reflected Cross-Site Scripting via the position parameter found in the /sms-ovh-sent.php file which allows attackers to inject arbitrary web scripts...

6.1CVSS4.7AI score0.00782EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder