CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 3 and 3.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
851 CVE-2021-24440 79 XSS 2021-07-12 2021-07-15
3.5
None Remote Medium ??? None Partial None
The Sign-up Sheets WordPress plugin before 1.0.14 did not sanitise or escape some of its fields when creating a new sheet, allowing high privilege users to add JavaScript in them, leading to a Stored Cross-Site Scripting issue. The payloads will be triggered when viewing the 'All Sheets' page in the admin dashboard
852 CVE-2021-24439 79 XSS 2021-07-12 2021-07-15
3.5
None Remote Medium ??? None Partial None
The Browser Screenshots WordPress plugin before 1.7.6 allowed authenticated users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks as the image_class parameter of the browser-shot shortcode was not escaped.
853 CVE-2021-24428 79 XSS 2021-08-02 2021-08-09
3.5
None Remote Medium ??? None Partial None
The RSS for Yandex Turbo WordPress plugin through 1.30 does not sanitise or escape some of its settings before saving and outputing them in the admin dashboard, leading to an Authenticated Stored Cross-Site Scripting issue even when the unfiltered_html capability is disallowed.
854 CVE-2021-24427 79 XSS 2021-07-12 2021-07-15
3.5
None Remote Medium ??? None Partial None
The W3 Total Cache WordPress plugin before 2.1.3 did not sanitise or escape some of its CDN settings, allowing high privilege users to use JavaScript in them, which will be output in the page, leading to an authenticated Stored Cross-Site Scripting issue
855 CVE-2021-24426 79 XSS 2021-07-12 2021-07-14
3.5
None Remote Medium ??? None Partial None
The Backup by 10Web – Backup and Restore Plugin WordPress plugin through 1.0.20 does not sanitise or escape the tab parameter before outputting it back in the page, leading to a reflected Cross-Site Scripting issue
856 CVE-2021-24425 79 XSS 2021-08-02 2021-08-10
3.5
None Remote Medium ??? None Partial None
The Floating Notification Bar, Sticky Menu on Scroll, and Sticky Header for Any Theme – myStickymenu WordPress plugin before 2.5.2 does not sanitise or escape its Bar Text settings, allowing hight privilege users to use malicious JavaScript in it, leading to a Stored Cross-Site Scripting issue, which will be triggered in the plugin's setting, as well as all front-page of the blog (when the Welcome bar is active)
857 CVE-2021-24424 79 XSS 2021-07-12 2021-07-15
3.5
None Remote Medium ??? None Partial None
The WP Reset – Most Advanced WordPress Reset Tool WordPress plugin before 1.90 did not sanitise or escape its extra_data parameter when creating a snapshot via the admin dashboard, leading to an authenticated Stored Cross-Site Scripting issue
858 CVE-2021-24421 79 XSS 2021-07-12 2021-07-15
3.5
None Remote Medium ??? None Partial None
The WP JobSearch WordPress plugin before 1.7.4 did not sanitise or escape multiple of its parameters from the my-resume page before outputting them in the page, allowing low privilege users to use JavaScript payloads in them and leading to a Stored Cross-Site Scripting issue
859 CVE-2021-24420 79 XSS 2021-07-12 2021-10-27
3.5
None Remote Medium ??? None Partial None
The Request a Quote WordPress plugin before 2.3.4 did not sanitise and escape some of its quote fields when adding/editing a quote as admin, leading to Stored Cross-Site scripting issues when the quote is output in the 'All Quotes" table.
860 CVE-2021-24419 79 XSS 2021-07-12 2021-07-15
3.5
None Remote Medium ??? None Partial None
The WP YouTube Lyte WordPress plugin before 1.7.16 did not sanitise or escape its lyte_yt_api_key and lyte_notification settings before outputting them back in the page, allowing high privilege users to set XSS payload on them and leading to stored Cross-Site Scripting issues.
861 CVE-2021-24418 79 XSS 2021-07-12 2021-07-15
3.5
None Remote Medium ??? None Partial None
The Smooth Scroll Page Up/Down Buttons WordPress plugin through 1.4 does not properly sanitise and validate its psb_positioning settings, allowing high privilege users such as admin to set an XSS payload in it, which will be executed in all pages of the blog
862 CVE-2021-24416 79 XSS 2021-10-18 2021-10-21
3.5
None Remote Medium ??? None Partial None
The StreamCast – Radio Player for WordPress plugin before 2.1.1 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode
863 CVE-2021-24415 79 XSS 2021-10-18 2021-10-21
3.5
None Remote Medium ??? None Partial None
The Polo Video Gallery – Best wordpress video gallery plugin WordPress plugin through 1.2 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode
864 CVE-2021-24414 79 XSS 2021-10-25 2021-10-28
3.5
None Remote Medium ??? None Partial None
The Video Player for YouTube WordPress plugin before 1.4 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode
865 CVE-2021-24413 79 XSS 2021-10-18 2021-10-21
3.5
None Remote Medium ??? None Partial None
The Easy Twitter Feed WordPress plugin before 1.2 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode
866 CVE-2021-24412 79 XSS 2021-10-18 2021-10-21
3.5
None Remote Medium ??? None Partial None
The Html5 Audio Player – Audio Player for WordPress plugin before 2.1.3 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode
867 CVE-2021-24408 79 XSS 2021-07-12 2021-07-15
3.5
None Remote Medium ??? None Partial None
The Prismatic WordPress plugin before 2.8 does not sanitise or validate some of its shortcode parameters, allowing users with a role as low as Contributor to set Cross-Site payload in them. A post made by a contributor would still have to be approved by an admin to have the XSS trigger able in the frontend, however, higher privilege users, such as editor could exploit this without the need of approval, and even when the blog disallows the unfiltered_html capability.
868 CVE-2021-24388 79 XSS CSRF 2021-07-06 2021-07-09
3.5
None Remote Medium ??? None Partial None
In the VikRentCar Car Rental Management System WordPress plugin before 1.1.7, there is a custom filed option by which we can manage all the fields that the users will have to fill in before saving the order. However, the field name is not sanitised or escaped before being output back in the page, leading to a stored Cross-Site Scripting issue. There is also no CSRF check done before saving the setting, allowing attackers to make a logged in admin set arbitrary Custom Fields, including one with XSS payload in it.
869 CVE-2021-24386 79 XSS 2021-07-06 2021-07-09
3.5
None Remote Medium ??? None Partial None
The WP SVG images WordPress plugin before 3.4 did not sanitise the SVG files uploaded, which could allow low privilege users such as author+ to upload a malicious SVG and then perform XSS attacks by inducing another user to access the file directly. In v3.4, the plugin restricted such upload to editors and admin, with an option to also allow author to do so. The description of the plugin has also been updated with a security warning as upload of such content is intended.
870 CVE-2021-24383 79 XSS 2021-06-21 2021-06-25
3.5
None Remote Medium ??? None Partial None
The WP Google Maps WordPress plugin before 8.1.12 did not sanitise, validate of escape the Map Name when output in the Map List of the admin dashboard, leading to an authenticated Stored Cross-Site Scripting issue
871 CVE-2021-24382 79 XSS 2021-06-14 2021-06-22
3.5
None Remote Medium ??? None Partial None
The Smart Slider 3 Free and pro WordPress plugins before 3.5.0.9 did not sanitise the Project Name before outputting it back in the page, leading to a Stored Cross-Site Scripting issue. By default, only administrator users could access the affected functionality, limiting the exploitability of the vulnerability. However, some WordPress admins may allow lesser privileged users to access the plugin's functionality, in which case, privilege escalation could be performed.
872 CVE-2021-24381 79 XSS 2021-10-25 2021-10-28
3.5
None Remote Medium ??? None Partial None
The Ninja Forms Contact Form WordPress plugin before 3.5.8.2 does not sanitise and escape the custom class name of the form field created, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
873 CVE-2021-24378 79 Exec Code XSS 2021-06-21 2021-06-25
3.5
None Remote Medium ??? None Partial None
The Autoptimize WordPress plugin before 2.7.8 does not check for malicious files such as .html in the archive uploaded via the 'Import Settings' feature. As a result, it is possible for a high privilege user to upload a malicious file containing JavaScript code inside an archive which will execute when a victim visits index.html inside the plugin directory.
874 CVE-2021-24369 79 XSS 2021-06-21 2021-06-25
3.5
None Remote Medium ??? None Partial None
In the GetPaid WordPress plugin before 2.3.4, users with the contributor role and above can create a new Payment Form, however the Label and Help Text input fields were not getting sanitized properly. So it was possible to inject malicious content such as img tags, leading to a Stored Cross-Site Scripting issue which is triggered when the form will be edited, for example when an admin reviews it and could lead to privilege escalation.
875 CVE-2021-24367 79 XSS 2021-06-21 2021-06-25
3.5
None Remote Medium ??? None Partial None
The WP Config File Editor WordPress plugin through 1.7.1 was affected by an Authenticated Stored Cross-Site Scripting (XSS) vulnerability.
876 CVE-2021-24366 79 XSS 2021-06-21 2021-06-25
3.5
None Remote Medium ??? None Partial None
The Admin Columns Free WordPress plugin before 4.3 and Admin Columns Pro WordPress plugin before 5.5.1, rendered input on the posted pages with improper input validation on the value passed into the field 'Label' parameter, by taking this as an advantage an authenticated attacker can supply a crafted arbitrary script and execute it.
877 CVE-2021-24365 79 XSS 2021-07-12 2021-07-15
3.5
None Remote Medium ??? None Partial None
The Admin Columns WordPress plugin Free before 4.3.2 and Pro before 5.5.2 allowed to configure individual columns for tables. Each column had a type. The type "Custom Field" allowed to choose an arbitrary database column to display in the table. There was no escaping applied to the contents of "Custom Field" columns.
878 CVE-2021-24357 79 XSS 2021-06-14 2021-06-18
3.5
None Remote Medium ??? None Partial None
In the Best Image Gallery & Responsive Photo Gallery – FooGallery WordPress plugin before 2.0.35, the Custom CSS field of each gallery is not properly sanitised or validated before being being output in the page where the gallery is embed, leading to a stored Cross-Site Scripting issue.
879 CVE-2021-24346 79 XSS 2021-06-14 2021-06-21
3.5
None Remote Medium ??? None Partial None
The Stock in & out WordPress plugin through 1.0.4 has a search functionality, the lowest accessible level to it being contributor. The srch POST parameter is not validated, sanitised or escaped before using it in the echo statement, leading to a reflected XSS issue
880 CVE-2021-24344 79 XSS 2021-06-07 2021-06-14
3.5
None Remote Medium ??? None Partial None
The Easy Preloader WordPress plugin through 1.0.0 does not sanitise its setting fields, leading to authenticated (admin+) Stored Cross-Site scripting issues
881 CVE-2021-24343 79 XSS 2021-06-07 2021-06-10
3.5
None Remote Medium ??? None Partial None
The iFlyChat - WordPress Chat plugin through 4.6.4 does not sanitise its APP ID setting before outputting it back in the page, leading to an authenticated Stored Cross-Site Scripting issue
882 CVE-2021-24339 79 XSS 2021-06-21 2021-06-24
3.5
None Remote Medium ??? None Partial None
The Pods – Custom Content Types and Fields WordPress plugin before 2.7.27 was vulnerable to an Authenticated Stored Cross-Site Scripting (XSS) security vulnerability within the 'Menu Label' field parameter.
883 CVE-2021-24338 79 XSS 2021-06-21 2021-06-24
3.5
None Remote Medium ??? None Partial None
The Pods – Custom Content Types and Fields WordPress plugin before 2.7.27 was vulnerable to an Authenticated Stored Cross-Site Scripting (XSS) security vulnerability within the 'Singular Label' field parameter.
884 CVE-2021-24334 79 XSS 2021-06-01 2021-06-11
3.5
None Remote Medium ??? None Partial None
The Instant Images – One Click Unsplash Uploads WordPress plugin before 4.4.0.1 did not properly validate and sanitise its unsplash_download_w and unsplash_download_h parameter settings (/wp-admin/upload.php?page=instant-images), only validating them client side before saving them, leading to a Stored Cross-Site Scripting issue.
885 CVE-2021-24332 79 XSS 2021-05-24 2021-05-28
3.5
None Remote Medium ??? None Partial None
The Autoptimize WordPress plugin before 2.8.4 was missing proper escaping and sanitisation in some of its settings, allowing high privilege users to set XSS payloads in them, leading to stored Cross-Site Scripting issues
886 CVE-2021-24331 79 XSS 2021-06-01 2021-06-11
3.5
None Remote Medium ??? None Partial None
The Smooth Scroll Page Up/Down Buttons WordPress plugin before 1.4 did not properly sanitise and validate its settings, such as psb_distance, psb_buttonsize, psb_speed, only validating them client side. This could allow high privilege users (such as admin) to set XSS payloads in them
887 CVE-2021-24330 79 XSS 2021-06-01 2021-06-11
3.5
None Remote Medium ??? None Partial None
The Funnel Builder by CartFlows – Create High Converting Sales Funnels For WordPress plugin before 1.6.13 did not sanitise its facebook_pixel_id and google_analytics_id settings, allowing high privilege users to set XSS payload in them, which will either be executed on pages generated by the plugin, or the whole website depending on the settings used.
888 CVE-2021-24329 79 XSS 2021-06-01 2021-06-10
3.5
None Remote Medium ??? None Partial None
The WP Super Cache WordPress plugin before 1.7.3 did not properly sanitise its wp_cache_location parameter in its settings, which could lead to a Stored Cross-Site Scripting issue.
889 CVE-2021-24328 352 XSS CSRF 2021-06-01 2021-06-11
3.5
None Remote Medium ??? None Partial None
The WP Login Security and History WordPress plugin through 1.0 did not have CSRF check when saving its settings, not any sanitisation or validation on them. This could allow attackers to make logged in administrators change the plugin's settings to arbitrary values, and set XSS payloads on them as well
890 CVE-2021-24327 79 XSS 2021-05-17 2021-05-24
3.5
None Remote Medium ??? None Partial None
The SEO Redirection Plugin – 301 Redirect Manager WordPress plugin before 6.4 did not sanitise the Redirect From and Redirect To fields when creating a new redirect in the dashboard, allowing high privilege users (even with the unfiltered_html disabled) to set XSS payloads
891 CVE-2021-24326 79 XSS 2021-05-17 2021-05-24
3.5
None Remote Medium ??? None Partial None
The tab parameter of the settings page of the All 404 Redirect to Homepage WordPress plugin before 1.21 was vulnerable to an authenticated reflected Cross-Site Scripting (XSS) issue as user input was not properly sanitised before being output in an attribute.
892 CVE-2021-24323 79 XSS 2021-05-17 2021-05-24
3.5
None Remote Medium ??? None Partial None
When taxes are enabled, the "Additional tax classes" field was not properly sanitised or escaped before being output back in the admin dashboard, allowing high privilege users such as admin to use XSS payloads even when the unfiltered_html is disabled
893 CVE-2021-24322 79 XSS 2021-06-01 2021-06-11
3.5
None Remote Medium ??? None Partial None
The Database Backup for WordPress plugin before 2.4 did not escape the backup_recipient POST parameter in before output it back in the attribute of an HTML tag, leading to a Stored Cross-Site Scripting issue.
894 CVE-2021-24319 79 XSS 2021-06-01 2021-08-12
3.5
None Remote Medium ??? None Partial None
The Bello - Directory & Listing WordPress theme before 1.6.0 did not properly sanitise its post_excerpt parameter before outputting it back in the shop/my-account/bello-listing-endpoint/ page, leading to a Cross-Site Scripting issue
895 CVE-2021-24315 79 XSS 2021-05-17 2021-05-24
3.5
None Remote Medium ??? None Partial None
The GiveWP – Donation Plugin and Fundraising Platform WordPress plugin before 2.10.4 did not sanitise or escape the Background Image field of its Stripe Checkout Setting and Logo field in its Email settings, leading to authenticated (admin+) Stored XSS issues.
896 CVE-2021-24313 79 XSS 2021-06-01 2021-06-11
3.5
None Remote Medium ??? None Partial None
The WP Prayer WordPress plugin before 1.6.2 provides the functionality to store requested prayers/praises and list them on a WordPress website. These stored prayer/praise requests can be listed by using the WP Prayer engine. An authenticated WordPress user with any role can fill in the form to request a prayer. The form to request prayers or praises have several fields. The 'prayer request' and 'praise request' fields do not use proper input validation and can be used to store XSS payloads.
897 CVE-2021-24310 79 XSS 2021-06-01 2021-06-09
3.5
None Remote Medium ??? None Partial None
The Photo Gallery by 10Web - Mobile-Friendly Image Gallery WordPress plugin before 1.5.67 did not properly sanitise the gallery title, allowing high privilege users to create one with XSS payload in it, which will be triggered when another user will view the gallery list or the affected gallery in the admin dashboard. This is due to an incomplete fix of CVE-2019-16117
898 CVE-2021-24309 79 XSS 2021-06-01 2021-06-09
3.5
None Remote Medium ??? None Partial None
The "Schedule Name" input in the Weekly Schedule WordPress plugin before 3.4.3 general options did not properly sanitize input, allowing a user to inject javascript code using the <script> HTML tags and cause a stored XSS issue
899 CVE-2021-24308 79 XSS 2021-05-24 2021-06-03
3.5
None Remote Medium ??? None Partial None
The 'State' field of the Edit profile page of the LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress plugin before 4.21.1 is not properly sanitised when output in the About section of the profile page, leading to a stored Cross-Site Scripting issue. This could allow low privilege users (such as students) to elevate their privilege via an XSS attack when an admin will view their profile.
900 CVE-2021-24306 79 XSS 2021-05-24 2021-06-03
3.5
None Remote Medium ??? None Partial None
The Ultimate Member – User Profile, User Registration, Login & Membership Plugin WordPress plugin before 2.1.20 did not properly sanitise, validate or encode the query string when generating a link to edit user's own profile, leading to an authenticated reflected Cross-Site Scripting issue. Knowledge of the targeted username is required to exploit this, and attackers would then need to make the related logged in user open a malicious link.
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.