exploitDog

GHSA-wxcw-q2qh-5cr8

Опубликовано: 07 июн. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

The Email Templates plugin for WordPress is vulnerable to HTML Injection in versions up to, and including, 1.3. This makes it possible for attackers to present phishing forms or conduct cross-site request forgery attacks against site administrators.

The Email Templates plugin for WordPress is vulnerable to HTML Injection in versions up to, and including, 1.3. This makes it possible for attackers to present phishing forms or conduct cross-site request forgery attacks against site administrators.

Ссылки

EPSS

Процентиль: 56%

0.00339

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-74

Связанные уязвимости

CVE-2019-25150

CVSS3: 8.8

nvd

больше 2 лет назад

The Email Templates plugin for WordPress is vulnerable to HTML Injection in versions up to, and including, 1.3. This makes it possible for attackers to present phishing forms or conduct cross-site request forgery attacks against site administrators.

EPSS

Процентиль: 56%

0.00339

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-74