exploitDog

GHSA-w2cq-5vg4-f6q9

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in inc/raf_form.php in the Recommend to a friend plugin 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the current_url parameter.

Cross-site scripting (XSS) vulnerability in inc/raf_form.php in the Recommend to a friend plugin 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the current_url parameter.

Ссылки

EPSS

Процентиль: 56%

0.00342

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2013-7276

nvd

больше 11 лет назад

Cross-site scripting (XSS) vulnerability in inc/raf_form.php in the Recommend to a friend plugin 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the current_url parameter.

EPSS

Процентиль: 56%

0.00342

Низкий

CVE ID

Дефекты

CWE-79