Filtered by vendor Custom Website Data Project
Subscribe
Filtered by product Custom Website Data
Subscribe
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-38347 | 1 Custom Website Data Project | 1 Custom Website Data | 2024-02-28 | 4.3 MEDIUM | 6.1 MEDIUM |
The Custom Website Data WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the id parameter found in the ~/views/edit.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.2. |