Lucene search
WpvulndbWPVDB-ID:350E660D-4F32-44F2-89D9-29A8D5307156HistoryAug 13, 2021 - 12:00 a.m.
Smart Email Alerts <= 1.0.10 - Reflected Cross-Site Scripting
2021-08-1300:00:00
wpscan.com
13
email alerts
cross-site scripting
vulnerable software
web scripts
api key
EPSS
0.001
Percentile
31.9%
The plugin is vulnerable to Reflected Cross-Site Scripting via the api_key in the ~/views/settings.php file which allows attackers to inject arbitrary web scripts
Related
cve
cve
CVE-2021-34642
2021-08-16 19:15:14
patchstack
patchstack
nvd
nvd
CVE-2021-34642
2021-08-16 19:15:14
prion
prion
Cross site scripting
2021-08-16 19:15:00
cvelist
cvelist
CVE-2021-34642 Smart Email Alerts <= 1.0.10 Reflected Cross-Site Scripting
2021-08-16 18:22:23