exploitDog

GHSA-pgjp-w5pj-5rg7

Опубликовано: 31 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

The External Links in New Window / New Tab WordPress plugin before 1.43 does not properly escape URLs it concatenates to onclick event handlers, which makes Stored Cross-Site Scripting attacks possible.

The External Links in New Window / New Tab WordPress plugin before 1.43 does not properly escape URLs it concatenates to onclick event handlers, which makes Stored Cross-Site Scripting attacks possible.

Ссылки

EPSS

Процентиль: 43%

0.0021

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-1582

CVSS3: 6.1

nvd

больше 3 лет назад

The External Links in New Window / New Tab WordPress plugin before 1.43 does not properly escape URLs it concatenates to onclick event handlers, which makes Stored Cross-Site Scripting attacks possible.

EPSS

Процентиль: 43%

0.0021

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79