exploitDog

GHSA-qhq9-93x7-7x6h

Опубликовано: 10 сент. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

Authenticated (subscriber+) Stored Cross-Site Scripting (XSS) vulnerability in Ali Khallad's Contact Form By Mega Forms plugin <= 1.2.4 at WordPress.

Authenticated (subscriber+) Stored Cross-Site Scripting (XSS) vulnerability in Ali Khallad's Contact Form By Mega Forms plugin <= 1.2.4 at WordPress.

Ссылки

EPSS

Процентиль: 49%

0.0026

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-40191

CVSS3: 5.4

nvd

больше 3 лет назад

Authenticated (subscriber+) Stored Cross-Site Scripting (XSS) vulnerability in Ali Khallad's Contact Form By Mega Forms plugin <= 1.2.4 at WordPress.

EPSS

Процентиль: 49%

0.0026

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79