CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-42943

Stored cross-site scripting (XSS) in admin/usermanager.php over IPPlan v4.92b allows remote attackers to inject arbitrary web script or HTML via the userid parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.1%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

https://devbrain.com.br/index.php/2022/05/16/cve-2021-42943/
https://devbrain.com.br/index.php/2022/05/16/cve-2021-42943/

Products affected by CVE-2021-42943

Ipplan Project » Ipplan » Version: 4.92b

cpe:2.3:a:ipplan_project:ipplan:4.92b

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-42943

Products

Pricing

Contact Us