CVE-2021-4244

MEDIUM Year: 2021
CVSS v3 Score
6.1
Medium
Weakness Type
CWE-707
View all →

Vulnerability Description

A vulnerability classified as problematic has been found in yikes-inc-easy-mailchimp-extender Plugin up to 6.8.5. This affects an unknown part of the file admin/partials/ajax/add_field_to_form.php. The manipulation of the argument field_name/merge_tag/field_type/list_id leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 6.8.6 is able to address this issue. The name of the patch is 3662c6593aa1bb4286781214891d26de2e947695. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-215307.

Related Vulnerabilities

CVE-2020-36608

MEDIUM
CVSS:6.1(Medium)

A vulnerability, which was classified as problematic, has been found in Tribal Systems Zenario CMS. Affected by this issue is some unknown functionality of the file admin_organizer.js of the component...

CWE-7072020

CVE-2020-36621

MEDIUM
CVSS:6.1(Medium)

A vulnerability, which was classified as problematic, has been found in chedabob whatismyudid. Affected by this issue is the function exports.enrollment of the file routes/mobileconfig.js. The manipul...

CWE-7072020

CVE-2020-36626

MEDIUM
CVSS:6.1(Medium)

A vulnerability classified as critical has been found in Modern Tribe Panel Builder Plugin. Affected is the function add_post_content_filtered_to_search_sql of the file ModularContent/SearchFilter.php...

CWE-7072020

CVE-2021-4251

MEDIUM
CVSS:6.1(Medium)

A vulnerability classified as problematic was found in as. This vulnerability affects the function getFullURL of the file include.cdn.php. The manipulation leads to cross site scripting. The attack ca...

CWE-7072021

CVE-2021-4252

MEDIUM
CVSS:6.1(Medium)

A vulnerability, which was classified as problematic, has been found in WP-Ban. This issue affects the function toggle_checkbox of the file ban-options.php. The manipulation of the argument $_SERVER["...

CWE-7072021

CVE-2021-4253

MEDIUM
CVSS:6.1(Medium)

A vulnerability, which was classified as problematic, was found in ctrlo lenio. Affected is an unknown function in the library lib/Lenio.pm of the component Ticket Handler. The manipulation of the arg...

CWE-7072021