exploitDog

GHSA-jh8v-8pj3-4hv2

Опубликовано: 12 июл. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.8

Описание

The WP-Paginate WordPress plugin before 2.1.9 does not escape one of its settings, which could allow high privilege users to perform Stored Cross-Site Scripting attacks when unfiltered_html is disallowed

The WP-Paginate WordPress plugin before 2.1.9 does not escape one of its settings, which could allow high privilege users to perform Stored Cross-Site Scripting attacks when unfiltered_html is disallowed

Ссылки

EPSS

Процентиль: 43%

0.00206

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-2050

CVSS3: 4.8

nvd

больше 3 лет назад

The WP-Paginate WordPress plugin before 2.1.9 does not escape one of its settings, which could allow high privilege users to perform Stored Cross-Site Scripting attacks when unfiltered_html is disallowed

EPSS

Процентиль: 43%

0.00206

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79