Medium severity6.1NVD Advisory· Published Sep 10, 2021· Updated Jun 17, 2026
CVE-2021-38353
CVE-2021-38353
Description
The Dropdown and scrollable Text WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the content parameter found in the ~/index.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=2.0
- Dropdown and scrollable Text/Dropdown and scrollable Textv5Range: 2.0
Patches
Vulnerability mechanics
References
2- plugins.trac.wordpress.org/browser/dropdown-and-scrollable-text/trunk/index.phpnvdExploitThird Party Advisory
- www.wordfence.com/vulnerability-advisories/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.