CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-24597

The You Shang WordPress plugin through 1.0.1 does not escape its qrcode links settings, which result into Stored Cross-Site Scripting issues in frontend posts and the plugins settings page depending on the payload used

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.1%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

https://wpscan.com/vulnerability/37554d0e-68e2-4df9-8c59-65f5cd7f184e
https://wpscan.com/vulnerability/37554d0e-68e2-4df9-8c59-65f5cd7f184e

Products affected by CVE-2021-24597

You-Shang Project » You-Shang » Version: Any

cpe:2.3:a:you-shang_project:you-shang:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-24597

Products

Pricing

Contact Us