CVE-2021-3258
N/A
N/A
Summary
Question2Answer Q2A Ultimate SEO Version 1.3 is affected by cross-site scripting (XSS), which may lead to arbitrary remote code execution.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://nirmaldahal.com.np/sxss-to-defacement-and-account-takeover/
- https://www.question2answer.org/qa/58520/important-q2a-ultimate-seo-important-update
- https://github.com/q2a-projects/Q2A-Ultimate-SEO/commit/20069f28147c6f2c3acca4e3f6f5154537c5d536
References
- https://nirmaldahal.com.np/sxss-to-defacement-and-account-takeover/
- https://www.question2answer.org/qa/58520/important-q2a-ultimate-seo-important-update
- https://github.com/q2a-projects/Q2A-Ultimate-SEO/commit/20069f28147c6f2c3acca4e3f6f5154537c5d536
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.