exploitDog

GHSA-xwg4-3m43-wmp8

Опубликовано: 20 окт. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.1

Описание

Cross-Site Request Forgery (CSRF) vulnerability in Fahad Mahmood Endless Posts Navigation allows Stored XSS.This issue affects Endless Posts Navigation: from n/a through 2.2.7.

Cross-Site Request Forgery (CSRF) vulnerability in Fahad Mahmood Endless Posts Navigation allows Stored XSS.This issue affects Endless Posts Navigation: from n/a through 2.2.7.

Ссылки

EPSS

Процентиль: 12%

0.00042

Низкий

7.1 High

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2024-49629

CVSS3: 7.1

nvd

10 месяцев назад

Cross-Site Request Forgery (CSRF) vulnerability in Fahad Mahmood Endless Posts Navigation allows Stored XSS.This issue affects Endless Posts Navigation: from n/a through 2.2.7.

EPSS

Процентиль: 12%

0.00042

Низкий

7.1 High

CVSS3

CVE ID

Дефекты

CWE-352