Lucene search
WpvulndbWPVDB-ID:0261DCA0-982F-488E-9093-5B64A1C73D7DHistorySep 08, 2021 - 12:00 a.m.
RentPress <= 6.6.4 - Reflected Cross-Site Scripting
2021-09-0800:00:00
wpscan.com
10
rentpress plugin
6.6.4
reflected cross-site scripting
selections parameter
ajaxrequests.php file
arbitrary web scripts
vulnerability
EPSS
0.001
Percentile
32.7%
The plugin is vulnerable to Reflected Cross-Site Scripting via the selections parameter found in the ~/src/rentPress/AjaxRequests.php file which allows attackers to inject arbitrary web scripts
Related
cvelist
cvelist
CVE-2021-38323 RentPress <= 6.6.4 Reflected Cross-Site Scripting
2021-09-09 18:10:40
nvd
nvd
CVE-2021-38323
2021-09-09 19:15:13
prion
prion
Cross site scripting
2021-09-09 19:15:00
patchstack
patchstack
cve
cve
CVE-2021-38323
2021-09-09 19:15:13