exploitDog

GHSA-9ccr-2cqc-j2h4

Опубликовано: 08 фев. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

The Yellow Yard Searchbar WordPress plugin before 2.8.2 does not escape some URL parameters before outputting them back to the user, leading to Reflected Cross-Site Scripting

The Yellow Yard Searchbar WordPress plugin before 2.8.2 does not escape some URL parameters before outputting them back to the user, leading to Reflected Cross-Site Scripting

Ссылки

EPSS

Процентиль: 32%

0.00125

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-2094

CVSS3: 6.1

nvd

почти 3 года назад

The Yellow Yard Searchbar WordPress plugin before 2.8.2 does not escape some URL parameters before outputting them back to the user, leading to Reflected Cross-Site Scripting

EPSS

Процентиль: 32%

0.00125

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79