exploitDog

GHSA-5r9x-pqj4-5w2w

Опубликовано: 15 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

The Cookie Information | Free GDPR Consent Solution WordPress plugin before 2.0.8 does not escape user data before outputting it back in attributes in the admin dashboard, leading to a Reflected Cross-Site Scripting issue

The Cookie Information | Free GDPR Consent Solution WordPress plugin before 2.0.8 does not escape user data before outputting it back in attributes in the admin dashboard, leading to a Reflected Cross-Site Scripting issue

Ссылки

EPSS

Процентиль: 82%

0.01702

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-0147

CVSS3: 6.1

nvd

почти 4 года назад

The Cookie Information | Free GDPR Consent Solution WordPress plugin before 2.0.8 does not escape user data before outputting it back in attributes in the admin dashboard, leading to a Reflected Cross-Site Scripting issue

EPSS

Процентиль: 82%

0.01702

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79