CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-42547

Insufficient Input Validation in the search functionality of Wordpress plugin Out-of-the-Box prior to 1.20.3 allows unauthenticated user to craft a reflected Cross-Site Scripting attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.8%

CVSS Severity

CVSS v3 Score 4.7

CVSS v2 Score 4.3

References

https://www.wpcloudplugins.com/wp-content/plugins/out-of-the-box/_documentation/index.html#releasenotes
https://www.wpcloudplugins.com/wp-content/plugins/out-of-the-box/_documentation/index.html#releasenotes

Products affected by CVE-2021-42547

Wpcloudplugins » Out-Of-The-Box » Version: Any

cpe:2.3:a:wpcloudplugins:out-of-the-box:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-42547

Products

Pricing

Contact Us