exploitDog

CVE-2015-9539

Опубликовано: 26 нояб. 2019

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

The Fast Secure Contact Form plugin before 4.0.38 for WordPress allows fs_contact_form1[welcome] XSS.

Ссылки

https://cybersecurityworks.com/zerodays/cve-2015-9539-fastsecure.html
Exploit
Third Party Advisory
https://github.com/amansaini/fast-secure-contact-form
Third Party Advisory
https://github.com/cybersecurityworks/Disclosed/issues/4
Exploit
Third Party Advisory
https://www.openwall.com/lists/oss-security/2015/10/27/2
Exploit
Mailing List
Third Party Advisory
https://cybersecurityworks.com/zerodays/cve-2015-9539-fastsecure.html
Exploit
Third Party Advisory
https://github.com/amansaini/fast-secure-contact-form
Third Party Advisory
https://github.com/cybersecurityworks/Disclosed/issues/4
Exploit
Third Party Advisory
https://www.openwall.com/lists/oss-security/2015/10/27/2
Exploit
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:fast_secure_contact_form_project:fast_secure_contact_form:*:*:*:*:*:wordpress:*:*

Версия до 4.0.38 (исключая)

EPSS

Процентиль: 64%

0.00462

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-g5x4-mhjm-x6qc

github

больше 3 лет назад

The Fast Secure Contact Form plugin before 4.0.38 for WordPress allows fs_contact_form1[welcome] XSS.

EPSS

Процентиль: 64%

0.00462

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79