exploitDog

GHSA-gw6m-mhpj-9hgf

Опубликовано: 21 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

The Ocean Extra WordPress plugin before 1.9.5 does not escape generated links which are then used when the OceanWP is active, leading to a Reflected Cross-Site Scripting issue

The Ocean Extra WordPress plugin before 1.9.5 does not escape generated links which are then used when the OceanWP is active, leading to a Reflected Cross-Site Scripting issue

Ссылки

EPSS

Процентиль: 87%

0.03381

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-25104

CVSS3: 6.1

nvd

больше 3 лет назад

The Ocean Extra WordPress plugin before 1.9.5 does not escape generated links which are then used when the OceanWP is active, leading to a Reflected Cross-Site Scripting issue

EPSS

Процентиль: 87%

0.03381

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79