CVE-2017-2285

Published: Aug 2, 2017Modified: May 13, 2026

6.1

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Exploitability: 2.8 / Impact: 2.7

Source: NVD

Description

Cross-site scripting vulnerability in Simple Custom CSS and JS prior to version 3.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected (22)

Products: Silkypress: Simple Custom Css And Js

Silkypress

1 product

Simple Custom Css And Js

Configuration A

22 vulnerable

Vulnerable Software	Affected Versions
Silkypress Simple Custom Css And Js	Version 1.0
Silkypress Simple Custom Css And Js	Version 1.1
Silkypress Simple Custom Css And Js	Version 1.2
Silkypress Simple Custom Css And Js	Version 1.3
Silkypress Simple Custom Css And Js	Version 1.4
Silkypress Simple Custom Css And Js	Version 1.5
Silkypress Simple Custom Css And Js	Version 1.6
Silkypress Simple Custom Css And Js	Version 2.0
Silkypress Simple Custom Css And Js	Version 2.10
Silkypress Simple Custom Css And Js	Version 2.1
Silkypress Simple Custom Css And Js	Version 2.2
Silkypress Simple Custom Css And Js	Version 2.3
Silkypress Simple Custom Css And Js	Version 2.4
Silkypress Simple Custom Css And Js	Version 2.5
Silkypress Simple Custom Css And Js	Version 2.6
Silkypress Simple Custom Css And Js	Version 2.7
Silkypress Simple Custom Css And Js	Version 2.8
Silkypress Simple Custom Css And Js	Version 2.9
Silkypress Simple Custom Css And Js	Version 3.0
Silkypress Simple Custom Css And Js	Version 3.1
Silkypress Simple Custom Css And Js	Version 3.2
Silkypress Simple Custom Css And Js	Version 3.3