Lucene search
WpvulndbWPVDB-ID:5E0BF0B6-9809-426B-B1D4-1FB653083B58HistoryAug 30, 2021 - 12:00 a.m.
Easy Social Icons < 3.0.9 - Reflected Cross-Site Scripting
2021-08-3000:00:00
wpscan.com
3
0.003 Low
EPSS
Percentile
66.0%
The plugin does not escape the $_SERVER[‘PHP_SELF’] input before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue
PoC
| CPE | Name | Operator | Version |
|---|---|---|---|
| easy-social-icons | lt | 3.0.9 |
Related
nvd
nvd
CVE-2021-39322
2021-09-02 17:15:09
patchstack
patchstack
prion
prion
Cross site scripting
2021-09-02 17:15:00
nuclei
nuclei
WordPress Easy Social Icons Plugin < 3.0.9 - Cross-Site Scripting
2022-02-04 19:21:50
cvelist
cvelist
CVE-2021-39322 Easy Social Icons <= 3.0.8 - Reflected Cross-Site Scripting
2021-09-01 00:00:00
wordfence
wordfence
PHP_SELFish Part 2 – Reflected XSS in Easy Social Icons
2021-09-29 14:34:44
wpexploit
wpexploit
Easy Social Icons < 3.0.9 - Reflected Cross-Site Scripting
2021-08-30 00:00:00
cve
cve
CVE-2021-39322
2021-09-02 17:15:09
cnvd
cnvd
WordPress Easy Social Icons Cross-Site Scripting Vulnerability
2021-09-04 00:00:00