Описание
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:15: via POST request variable html_id.
Ссылки
- ExploitThird Party Advisory
- Product
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- Product
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:2.5.1.8:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 39%
0.00174
Низкий
4.8 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 4.8
debian
около 7 лет назад
There is a reflected XSS vulnerability in WordPress Arigato Autorespon ...
CVSS3: 4.8
github
больше 3 лет назад
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:15: via POST request variable html_id.
EPSS
Процентиль: 39%
0.00174
Низкий
4.8 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79