Описание
The Advanced Ads plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2.0.14 via the 'change-ad__content' shortcode parameter. This allows authenticated attackers with editor-level permissions or above, to execute code on the server.
EPSS
Процентиль: 51%
0.00277
Низкий
7.2 High
CVSS3
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 7.2
github
около 1 месяца назад
The Advanced Ads plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 2.0.14 via the 'change-ad__content' shortcode parameter. This allows authenticated attackers with editor-level permissions or above, to execute code on the server.
EPSS
Процентиль: 51%
0.00277
Низкий
7.2 High
CVSS3
Дефекты
CWE-94