Lucene search
WpvulndbWPVDB-ID:98DFB20D-E2B8-42D4-818C-9BF9E326F6DBHistorySep 09, 2021 - 12:00 a.m.
SMS OVH <= 0.1 - Reflected Cross-Site Scripting
2021-09-0900:00:00
wpscan.com
11
sms ovh
reflected cross-site scripting
position parameter
arbitrary web scripts
EPSS
0.001
Percentile
29.3%
The plugin is vulnerable to Reflected Cross-Site Scripting via the position parameter found in the ~/sms-ovh-sent.php file which allows attackers to inject arbitrary web scripts
Related
patchstack
patchstack
cvelist
cvelist
CVE-2021-38357 SMS OVH <= 0.1 Reflected Cross-Site Scripting
2021-09-10 13:34:58
cve
cve
CVE-2021-38357
2021-09-10 14:15:11
nvd
nvd
CVE-2021-38357
2021-09-10 14:15:11
prion
prion
Cross site scripting
2021-09-10 14:15:00