exploitDog

GHSA-2xw3-pxr3-cr4c

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting vulnerability in Fudousan plugin ver5.7.0 and earlier, Fudousan Plugin Pro Single-User Type ver5.7.0 and earlier, and Fudousan Plugin Pro Multi-User Type ver5.7.0 and earlier allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.

Cross-site scripting vulnerability in Fudousan plugin ver5.7.0 and earlier, Fudousan Plugin Pro Single-User Type ver5.7.0 and earlier, and Fudousan Plugin Pro Multi-User Type ver5.7.0 and earlier allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.

Ссылки

EPSS

Процентиль: 40%

0.00183

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-20749

CVSS3: 5.4

nvd

больше 4 лет назад

Cross-site scripting vulnerability in Fudousan plugin ver5.7.0 and earlier, Fudousan Plugin Pro Single-User Type ver5.7.0 and earlier, and Fudousan Plugin Pro Multi-User Type ver5.7.0 and earlier allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.

EPSS

Процентиль: 40%

0.00183

Низкий

CVE ID

Дефекты

CWE-79