exploitDog

GHSA-h8cc-w6g9-2w76

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in the SoundCloud Is Gold plugin 2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the width parameter in a soundcloud_is_gold_player_preview action to wp-admin/admin-ajax.php.

Cross-site scripting (XSS) vulnerability in the SoundCloud Is Gold plugin 2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the width parameter in a soundcloud_is_gold_player_preview action to wp-admin/admin-ajax.php.

Ссылки

EPSS

Процентиль: 82%

0.01795

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2012-6624

nvd

около 12 лет назад

Cross-site scripting (XSS) vulnerability in the SoundCloud Is Gold plugin 2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the width parameter in a soundcloud_is_gold_player_preview action to wp-admin/admin-ajax.php.

EPSS

Процентиль: 82%

0.01795

Низкий

CVE ID

Дефекты

CWE-79