exploitDog

GHSA-m2px-76cx-93fc

Опубликовано: 24 фев. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.3

Описание

Cross-Site Request Forgery (CSRF) vulnerability in cmstactics WP Video Posts allows OS Command Injection. This issue affects WP Video Posts: from n/a through 3.5.1.

Cross-Site Request Forgery (CSRF) vulnerability in cmstactics WP Video Posts allows OS Command Injection. This issue affects WP Video Posts: from n/a through 3.5.1.

Ссылки

EPSS

Процентиль: 27%

0.00098

Низкий

8.3 High

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2025-27298

CVSS3: 8.3

nvd

12 месяцев назад

Cross-Site Request Forgery (CSRF) vulnerability in cmstactics WP Video Posts allows OS Command Injection. This issue affects WP Video Posts: from n/a through 3.5.1.

EPSS

Процентиль: 27%

0.00098

Низкий

8.3 High

CVSS3

CVE ID

Дефекты

CWE-352