CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9439

Multiple cross-site scripting (XSS) vulnerabilities in Uncanny Owl Tin Canny LearnDash Reporting before 3.4.4 allows authenticated remote attackers to inject arbitrary web script or HTML via the search_key GET Parameter in TinCan_Content_List_Table.php, message GET Parameter in licensing.php, tc_filter_group parameter in reporting-admin-menu.php, tc_filter_user parameter in reporting-admin-menu.php, tc_filter_course parameter in reporting-admin-menu.php, tc_filter_lesson parameter in reporting-admin-menu.php, tc_filter_module parameter in reporting-admin-menu.php, tc_filter_action parameter in reporting-admin-menu.php, tc_filter_data_range parameter in reporting-admin-menu.php, or tc_filter_data_range_last parameter in reporting-admin-menu.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.5%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

Products affected by CVE-2020-9439

Uncannyowl » Tin Canny Reporting For Learndash » Version: N/A

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:-
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.0

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.0
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.0.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.0.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.0.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.0.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.0.3

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.0.3
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.1.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.1.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.1.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.1.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.1.3

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.1.3
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.1.4

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.1.4
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.1.5

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.1.5
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.1.6

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.1.6
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.3

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.3
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.3.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.3.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.3.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.3.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.3.3

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.3.3
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.3.4

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.3.4
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.3.5

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.3.5
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.3.6

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.3.6
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.3.7

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.3.7
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.3.8

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.3.8
Uncannyowl » Tin Canny Reporting For Learndash » Version: 1.3.9

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:1.3.9
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.0

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.0
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.1.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.1.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.1.1.5

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.1.1.5
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.1.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.1.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.1.3

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.1.3
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.1.4

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.1.4
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.2.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.2.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.2.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.2.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.3

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.3
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.4

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.4
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.5

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.5
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.6

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.6
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.6.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.6.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.7

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.7
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.8

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.8
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.8.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.8.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.8.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.8.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.9

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.9
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.9.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.9.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.9.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.9.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.9.3

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.9.3
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.9.5

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.9.5
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.9.6

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.9.6
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.9.7

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.9.7
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.9.8

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.9.8
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.9.9

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.9.9
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.9.9.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.9.9.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 2.9.9.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:2.9.9.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.0

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.0
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.0.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.0.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.1.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.1.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.2.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.2.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.2.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.2.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.3

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.3
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.3.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.3.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.3.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.3.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.3.3

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.3.3
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.3.4

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.3.4
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.3.5

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.3.5
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.3.6

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.3.6
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.3.7

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.3.7
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.3.8

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.3.8
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.4

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.4
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.4.1

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.4.1
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.4.2

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.4.2
Uncannyowl » Tin Canny Reporting For Learndash » Version: 3.4.3

cpe:2.3:a:uncannyowl:tin_canny_reporting_for_learndash:3.4.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9439

Products

Pricing

Contact Us