cvelist/2021/24xxx/CVE-2021-24287.json

{
    "CVE_data_meta": {
        "ID": "CVE-2021-24287",
        "ASSIGNER": "contact@wpscan.com",
        "STATE": "PUBLIC",
        "TITLE": "Select All Categories and Taxonomies < 1.3.2 - Reflected Cross-Site Scripting (XSS)"
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "generator": "WPScan CVE Generator",
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "Moove Agency",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Select All Categories and Taxonomies, Change Checkbox to Radio Buttons",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_affected": "<",
                                            "version_name": "1.3.2",
                                            "version_value": "1.3.2"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "The settings page of the Select All Categories and Taxonomies, Change Checkbox to Radio Buttons WordPress plugin before 1.3.2 did not properly sanitise the tab parameter before outputting it back, leading to a reflected Cross-Site Scripting issue"
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "refsource": "CONFIRM",
                "url": "https://wpscan.com/vulnerability/56e1bb56-bfc5-40dd-b2d0-edef43d89bdf",
                "name": "https://wpscan.com/vulnerability/56e1bb56-bfc5-40dd-b2d0-edef43d89bdf"
            },
            {
                "refsource": "MISC",
                "name": "http://packetstormsecurity.com/files/164327/WordPress-Select-All-Categories-And-Taxonomies-1.3.1-Cross-Site-Scripting.html",
                "url": "http://packetstormsecurity.com/files/164327/WordPress-Select-All-Categories-And-Taxonomies-1.3.1-Cross-Site-Scripting.html"
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "value": "CWE-79 Cross-site Scripting (XSS)",
                        "lang": "eng"
                    }
                ]
            }
        ]
    },
    "credit": [
        {
            "lang": "eng",
            "value": "0xB9"
        }
    ],
    "source": {
        "discovery": "UNKNOWN"
    }
}