Bug Library < 2.0.4 - Reflected Cross-Site Scripting

2021-09-0900:00:00

wpscan.com

bug library

reflected cross-site scripting

vulnerability

successimportcount

arbitrary web scripts

software

EPSS

0.001

Percentile

32.7%

JSON

The plugin is vulnerable to Reflected Cross-Site Scripting via the via the successimportcount parameter found in the ~/bug-library.php file which allows attackers to inject arbitrary web scripts

References

www.wordfence.com/vulnerability-advisories/#CVE-2021-38355

EPSS

0.001

Percentile

32.7%

JSON

Related for WPVDB-ID:C25DDDC3-0DAC-4AAC-A16C-5DEF89A9499E