Lucene search
K

5 matches found

NVD
NVD
added 2021/08/16 7:15 p.m.19 views

CVE-2021-34655

The WP Songbook WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the url parameter found in the /inc/class.ajax.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.11...

6.1CVSS0.00844EPSS
Exploits1References2
Prion
Prion
added 2021/08/16 7:15 p.m.9 views

Cross site scripting

The WP Songbook WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the url parameter found in the /inc/class.ajax.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.11...

4.3CVSS6.1AI score0.00844EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2021/08/16 6:22 p.m.107 views

CVE-2021-34655

The WP Songbook WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the url parameter in ~/inc/class.ajax.php, affecting versions up to 2.0.11. This allows injecting arbitrary web scripts. Exploitation status and fixes are not provided in the supplied documents; no remediation de...

6.1CVSS6AI score0.00844EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2021/08/16 6:22 p.m.5 views

CVE-2021-34655 WP Songbook <= 2.0.11 Reflected Cross-Site Scripting

The WP Songbook WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the url parameter found in the /inc/class.ajax.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.11...

6.1CVSS6AI score0.00844EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/08/16 6:22 p.m.20 views

CVE-2021-34655 WP Songbook <= 2.0.11 Reflected Cross-Site Scripting

The WP Songbook WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the url parameter found in the /inc/class.ajax.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.11...

6.1CVSS6.2AI score0.00844EPSS
Exploits1References2
Rows per page
Query Builder