exploitDog

GHSA-v9hx-6rmh-g3mr

Опубликовано: 15 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.4

Описание

The Child Theme Generator WordPress plugin through 2.2.7 does not sanitise escape the parade parameter before outputting it back, leading to a Reflected Cross-Site Scripting in the admin dashboard

The Child Theme Generator WordPress plugin through 2.2.7 does not sanitise escape the parade parameter before outputting it back, leading to a Reflected Cross-Site Scripting in the admin dashboard

Ссылки

EPSS

Процентиль: 38%

0.00171

Низкий

6.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-24982

CVSS3: 6.4

nvd

почти 4 года назад

The Child Theme Generator WordPress plugin through 2.2.7 does not sanitise escape the parade parameter before outputting it back, leading to a Reflected Cross-Site Scripting in the admin dashboard

EPSS

Процентиль: 38%

0.00171

Низкий

6.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79