exploitDog

GHSA-qrxg-rv92-28fv

Опубликовано: 02 фев. 2022

Источник: github

Github: Не прошло ревью

Описание

The WOOF WordPress plugin before 1.2.6.3 does not sanitise and escape the woof_redraw_elements before outputing back in an admin page, leading to a Reflected Cross-Site Scripting

The WOOF WordPress plugin before 1.2.6.3 does not sanitise and escape the woof_redraw_elements before outputing back in an admin page, leading to a Reflected Cross-Site Scripting

Ссылки

EPSS

Процентиль: 87%

0.03204

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-25085

CVSS3: 6.1

nvd

около 4 лет назад

The WOOF WordPress plugin before 1.2.6.3 does not sanitise and escape the woof_redraw_elements before outputing back in an admin page, leading to a Reflected Cross-Site Scripting

EPSS

Процентиль: 87%

0.03204

Низкий

CVE ID

Дефекты

CWE-79