Описание
The Stop Spam Comments WordPress plugin through 0.2.1.2 does not properly generate the Javascript access token for preventing abuse of comment section, allowing threat authors to easily collect the value and add it to the request.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.2.1.2 (включая)
cpe:2.3:a:stop_spam_comments_project:stop_spam_comments:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 43%
0.00205
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-200
NVD-CWE-Other
Связанные уязвимости
CVSS3: 6.5
github
больше 3 лет назад
The Stop Spam Comments WordPress plugin through 0.2.1.2 does not properly generate the Javascript access token for preventing abuse of comment section, allowing threat authors to easily collect the value and add it to the request.
EPSS
Процентиль: 43%
0.00205
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-200
NVD-CWE-Other