CVE-2017-20098: Admin Custom Login Plugin Persistent cross site scripting
First published: Mon Jun 27 2022(Updated: )
A vulnerability was found in Admin Custom Login Plugin 2.4.5.2. It has been classified as problematic. Affected is an unknown function. The manipulation leads to basic cross site scripting (Persistent). It is possible to launch the attack remotely.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Weblizar Admin Custom Login | =2.4.5.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2017-20098?
CVE-2017-20098 is a vulnerability found in Admin Custom Login Plugin 2.4.5.2 that allows for remote cross-site scripting attacks.
How severe is CVE-2017-20098?
CVE-2017-20098 has a severity rating of medium with a value of 4.8.
What software is affected by CVE-2017-20098?
The Weblizar Admin Custom Login plugin version 2.4.5.2 is affected by CVE-2017-20098.
How can I fix CVE-2017-20098?
To fix CVE-2017-20098, it is recommended to update the Admin Custom Login plugin to a version that does not have the vulnerability.
Where can I find more information about CVE-2017-20098?
You can find more information about CVE-2017-20098 at the following links: [http://seclists.org/fulldisclosure/2017/Feb/75](http://seclists.org/fulldisclosure/2017/Feb/75) and [https://vuldb.com/?id.97368](https://vuldb.com/?id.97368).
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/title
- agent/description
- agent/event
- agent/first-publish-date
- agent/tags
- agent/source
- vendor/weblizar
- canonical/weblizar admin custom login
- version/weblizar admin custom login/2.4.5.2