exploitDog

GHSA-gwwq-j5vg-7jc3

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The Konnichiwa! Membership WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the plan_id parameter in the ~/views/subscriptions.html.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 0.8.3.

The Konnichiwa! Membership WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the plan_id parameter in the ~/views/subscriptions.html.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 0.8.3.

Ссылки

EPSS

Процентиль: 43%

0.0021

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-38317

CVSS3: 6.1

nvd

больше 4 лет назад

The Konnichiwa! Membership WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the plan_id parameter in the ~/views/subscriptions.html.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 0.8.3.

EPSS

Процентиль: 43%

0.0021

Низкий

CVE ID

Дефекты

CWE-79