exploitDog

GHSA-2hrr-4p8h-j38c

Опубликовано: 09 нояб. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) in Vladimir Anokhin's Shortcodes Ultimate plugin <= 5.12.0 on WordPress.

Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) in Vladimir Anokhin's Shortcodes Ultimate plugin <= 5.12.0 on WordPress.

Ссылки

EPSS

Процентиль: 28%

0.00102

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2022-41136

CVSS3: 6.1

nvd

около 3 лет назад

Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) in Vladimir Anokhin's Shortcodes Ultimate plugin <= 5.12.0 on WordPress.

EPSS

Процентиль: 28%

0.00102

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352