exploitDog

CVE-2024-7761

Опубликовано: 15 мая 2025

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

In the process of testing the Simple Job Board WordPress plugin before 2.12.2, a vulnerability was found that allows you to implement Stored XSS on behalf of the editor by embedding malicious script, which entails account takeover backdoor

Ссылки

https://wpscan.com/vulnerability/ae8c1c91-3574-4da5-b5dc-d4e3feccac7e/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:presstigers:simple_job_board:*:*:*:*:*:wordpress:*:*

Версия до 2.12.2 (исключая)

EPSS

Процентиль: 8%

0.00029

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-7vrj-wjmg-rqm2

CVSS3: 6.1

github

9 месяцев назад

In the process of testing the Simple Job Board WordPress plugin before 2.12.2, a vulnerability was found that allows you to implement Stored XSS on behalf of the editor by embedding malicious script, which entails account takeover backdoor

EPSS

Процентиль: 8%

0.00029

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79