exploitDog

CVE-2015-9459

Опубликовано: 10 окт. 2019

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

The searchterms-tagging-2 plugin through 1.535 for WordPress has XSS via the wp-admin/options-general.php count parameter.

Ссылки

http://cinu.pl/research/wp-plugins/mail_d14e213879cd60e80e538bde21c0359b.html
Exploit
Third Party Advisory
https://wordpress.org/plugins/searchterms-tagging-2/#developers
Third Party Advisory
http://cinu.pl/research/wp-plugins/mail_d14e213879cd60e80e538bde21c0359b.html
Exploit
Third Party Advisory
https://wordpress.org/plugins/searchterms-tagging-2/#developers
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:seo_searchterms_tagging_2_project:seo_searchterms_tagging_2:*:*:*:*:*:wordpress:*:*

Версия до 1.535 (включая)

EPSS

Процентиль: 41%

0.0019

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-24pj-648p-4mq2

CVSS3: 6.1

github

около 3 лет назад

The searchterms-tagging-2 plugin through 1.535 for WordPress has XSS via the wp-admin/options-general.php count parameter.

EPSS

Процентиль: 41%

0.0019

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79