exploitDog

GHSA-hxqp-vwmr-h574

Опубликовано: 26 сент. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.6

Описание

Cross-Site Request Forgery (CSRF) vulnerability in webandprint AR For WordPress allows Upload a Web Shell to a Web Server. This issue affects AR For WordPress: from n/a through 7.98.

Cross-Site Request Forgery (CSRF) vulnerability in webandprint AR For WordPress allows Upload a Web Shell to a Web Server. This issue affects AR For WordPress: from n/a through 7.98.

Ссылки

EPSS

Процентиль: 10%

0.00034

Низкий

9.6 Critical

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2025-60156

CVSS3: 9.6

nvd

5 месяцев назад

Cross-Site Request Forgery (CSRF) vulnerability in webandprint AR For WordPress allows Upload a Web Shell to a Web Server. This issue affects AR For WordPress: from n/a through 7.98.

EPSS

Процентиль: 10%

0.00034

Низкий

9.6 Critical

CVSS3

CVE ID

Дефекты

CWE-352