Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-25015

The myCred WordPress plugin before 2.4 does not sanitise and escape the search query before outputting it back in the history dashboard page, leading to a Reflected Cross-Site Scripting issue
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.4%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
Products affected by CVE-2021-25015
  • Mycred » Mycred » Version: N/A
    cpe:2.3:a:mycred:mycred:-
  • Mycred » Mycred » Version: 2.0
    cpe:2.3:a:mycred:mycred:2.0
  • Mycred » Mycred » Version: 2.0.1
    cpe:2.3:a:mycred:mycred:2.0.1
  • Mycred » Mycred » Version: 2.0.2
    cpe:2.3:a:mycred:mycred:2.0.2
  • Mycred » Mycred » Version: 2.1
    cpe:2.3:a:mycred:mycred:2.1
  • Mycred » Mycred » Version: 2.1.0.1
    cpe:2.3:a:mycred:mycred:2.1.0.1
  • Mycred » Mycred » Version: 2.1.0.2
    cpe:2.3:a:mycred:mycred:2.1.0.2
  • Mycred » Mycred » Version: 2.1.0.3
    cpe:2.3:a:mycred:mycred:2.1.0.3
  • Mycred » Mycred » Version: 2.1.1
    cpe:2.3:a:mycred:mycred:2.1.1
  • Mycred » Mycred » Version: 2.2
    cpe:2.3:a:mycred:mycred:2.2
  • Mycred » Mycred » Version: 2.3
    cpe:2.3:a:mycred:mycred:2.3
  • Mycred » Mycred » Version: 2.3.1
    cpe:2.3:a:mycred:mycred:2.3.1
  • Mycred » Mycred » Version: 2.3.2
    cpe:2.3:a:mycred:mycred:2.3.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved