Описание
The Site Reviews WordPress plugin before 7.2.5 does not properly sanitise and escape some of its Review fields, which could allow unauthenticated users to perform Stored XSS attacks
Ссылки
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.2.5 (исключая)
cpe:2.3:a:geminilabs:site_reviews:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 77%
0.01066
Низкий
8.8 High
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 8.8
github
11 месяцев назад
The Site Reviews WordPress plugin before 7.2.5 does not properly sanitise and escape some of its Review fields, which could allow unauthenticated users to perform Stored XSS attacks
EPSS
Процентиль: 77%
0.01066
Низкий
8.8 High
CVSS3
Дефекты
CWE-79