Lucene search
WpvulndbWPVDB-ID:0A75D11F-B3E6-4C1F-8EDE-CDBE3D6917F2HistoryDec 14, 2021 - 12:00 a.m.
Magic Post Voice <= 1.2 - Reflected Cross-Site Scripting
2021-12-1400:00:00
wpscan.com
6
plugin
reflected cross-site scripting
ids parameter
EPSS
0.001
Percentile
30.0%
The plugin is vulnerable to Reflected Cross-Site Scripting via the ids parameter found in the ~/inc/admin/main.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.2.
Related
cvelist
cvelist
CVE-2021-39315 Magic Post Voice <= 1.2 Reflected Cross-Site Scripting
2021-12-14 15:50:08
prion
prion
Cross site scripting
2021-12-14 16:15:00
patchstack
patchstack
nvd
nvd
CVE-2021-39315
2021-12-14 16:15:08
cnvd
cnvd
WordPress Magic Post Voice plugin cross-site scripting vulnerability
2021-12-19 00:00:00
cve
cve
CVE-2021-39315
2021-12-14 16:15:08