Vulnerability Details CVE-2021-41432
A stored cross-site scripting (XSS) vulnerability exists in FlatPress 1.2.1 that allows for arbitrary execution of JavaScript commands through blog content.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.017
EPSS Ranking 73.9%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
Products affected by CVE-2021-41432
-
cpe:2.3:a:flatpress:flatpress:1.2.1