CVE-2021-45476 MEDIUM

CVE-2021-45476: Information disclosure in Yordam Library Information Document Automation Program

Vendor Yordam Informatics Systems
Product Yordam Library Information Document Automation Program
Weakness CWE-79 · XSS
Published October 27, 2022
Last update May 18, 2026
View on NVD All CVEs

CVSS base score

4.7/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N

What the vulnerability does

01Description

Yordam Library Information Document Automation product before version 19.02 has an unauthenticated reflected XSS vulnerability.

Key dates

02Disclosure timeline

October 27, 2022 CVE published
May 18, 2026 Record updated

Related vulnerabilities

04Related CVE

CVE-2025-31085 WordPress xili-language plugin <= 2.21.2 - Reflected Cross Site Scripting (XSS) vulnerability CVE-2023-32118 WordPress SALERT Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS) CVE-2017-20155 Sterc Google Analytics Dashboard for MODX Internal Search widget.analytics.tpl cross site scripting CVE-2025-13857 Yet Another WebClap for WordPress <= 0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes CVE-2024-50447 WordPress Envo's Elementor Templates & Widgets for WooCommerce plugin <= 1.4.19 - Cross Site Scripting (XSS) vulnerability