exploitDog

CVE-2025-46506

Опубликовано: 24 апр. 2025

Источник: nvd

CVSS3: 7.1

EPSS Низкий

Описание

Cross-Site Request Forgery (CSRF) vulnerability in Lora77 WpZon – Amazon Affiliate Plugin allows Reflected XSS. This issue affects WpZon – Amazon Affiliate Plugin: from n/a through 1.3.

Ссылки

https://patchstack.com/database/wordpress/plugin/wpzon/vulnerability/wordpress-wpzon-amazon-affiliate-plugin-plugin-1-3-csrf-to-xss-vulnerability?_s_id=cve

EPSS

Процентиль: 6%

0.00027

Низкий

7.1 High

CVSS3

Дефекты

CWE-352

Связанные уязвимости

GHSA-xw27-x7r9-mg3q

CVSS3: 7.1

github

4 месяца назад

Cross-Site Request Forgery (CSRF) vulnerability in Lora77 WpZon – Amazon Affiliate Plugin allows Reflected XSS. This issue affects WpZon – Amazon Affiliate Plugin: from n/a through 1.3.

EPSS

Процентиль: 6%

0.00027

Низкий

7.1 High

CVSS3

Дефекты

CWE-352