exploitDog

GHSA-h3f7-j353-jjmr

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

A flaw in the WordPress plugin, Minimal Coming Soon & Maintenance Mode through 2.10, allows a CSRF attack to enable maintenance mode, inject XSS, modify several important settings, or include remote files as a logo.

A flaw in the WordPress plugin, Minimal Coming Soon & Maintenance Mode through 2.10, allows a CSRF attack to enable maintenance mode, inject XSS, modify several important settings, or include remote files as a logo.

Ссылки

EPSS

Процентиль: 72%

0.0073

Низкий

CVE ID

Связанные уязвимости

CVE-2020-6167

CVSS3: 8.8

nvd

около 6 лет назад

A flaw in the WordPress plugin, Minimal Coming Soon & Maintenance Mode through 2.10, allows a CSRF attack to enable maintenance mode, inject XSS, modify several important settings, or include remote files as a logo.

EPSS

Процентиль: 72%

0.0073

Низкий

CVE ID