exploitDog

CVE-2025-63068

Опубликовано: 09 дек. 2025

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in sevenspark Contact Form 7 Dynamic Text Extension contact-form-7-dynamic-text-extension allows Code Injection.This issue affects Contact Form 7 Dynamic Text Extension: from n/a through <= 5.0.3.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/contact-form-7-dynamic-text-extension/vulnerability/wordpress-contact-form-7-dynamic-text-extension-plugin-5-0-3-content-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 17%

0.00056

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-80

Связанные уязвимости

GHSA-3g27-fg6w-fm64

CVSS3: 5.3

github

около 2 месяцев назад

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in sevenspark Contact Form 7 Dynamic Text Extension contact-form-7-dynamic-text-extension allows Code Injection.This issue affects Contact Form 7 Dynamic Text Extension: from n/a through <= 5.0.3.

EPSS

Процентиль: 17%

0.00056

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-80