Lucene search
WpvulndbWPVDB-ID:CB1678D0-0AAD-4AF0-9269-6E89B6979BFDHistorySep 09, 2021 - 12:00 a.m.
On Page SEO + Whatsapp Chat Button < 1.0.2 - Reflected Cross-Site Scripting
2021-09-0900:00:00
wpscan.com
11
page seo
whatsapp
chat button
vulnerability
cross-site scripting
php_self
settings file
web scripts
attack
EPSS
0.001
Percentile
32.7%
The plugin is vulnerable to Reflected Cross-Site Scripting due to a reflected $_SERVER[“PHP_SELF”] value in the ~/settings.php file which allows attackers to inject arbitrary web scripts.
Related
cve
cve
CVE-2021-38332
2021-09-10 14:15:09
cvelist
cvelist
patchstack
patchstack
prion
prion
Cross site scripting
2021-09-10 14:15:00
nvd
nvd
CVE-2021-38332
2021-09-10 14:15:09