CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-24871

The Get Custom Field Values WordPress plugin before 4.0.1 does not escape custom fields before outputting them in the page, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.4%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

Products affected by CVE-2021-24871

Get Custom Field Values Project » Get Custom Field Values » Version: N/A

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:-
Get Custom Field Values Project » Get Custom Field Values » Version: 3.5

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:3.5
Get Custom Field Values Project » Get Custom Field Values » Version: 3.6

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:3.6
Get Custom Field Values Project » Get Custom Field Values » Version: 3.6.1

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:3.6.1
Get Custom Field Values Project » Get Custom Field Values » Version: 3.7

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:3.7
Get Custom Field Values Project » Get Custom Field Values » Version: 3.8

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:3.8
Get Custom Field Values Project » Get Custom Field Values » Version: 3.9

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:3.9
Get Custom Field Values Project » Get Custom Field Values » Version: 3.9.1

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:3.9.1
Get Custom Field Values Project » Get Custom Field Values » Version: 3.9.2

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:3.9.2
Get Custom Field Values Project » Get Custom Field Values » Version: 3.9.3

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:3.9.3
Get Custom Field Values Project » Get Custom Field Values » Version: 3.9.4

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:3.9.4
Get Custom Field Values Project » Get Custom Field Values » Version: 4.0

cpe:2.3:a:get_custom_field_values_project:get_custom_field_values:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-24871

Products

Pricing

Contact Us