exploitDog

CVE-2025-64633

Опубликовано: 16 дек. 2025

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in colabrio Norebro Extra norebro-extra allows Code Injection.This issue affects Norebro Extra: from n/a through <= 1.6.8.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/norebro-extra/vulnerability/wordpress-norebro-extra-plugin-1-6-8-content-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 17%

0.00056

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-80

Связанные уязвимости

GHSA-fmgq-3xhh-hjgc

CVSS3: 5.3

github

около 2 месяцев назад

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in colabrio Norebro Extra norebro-extra allows Code Injection.This issue affects Norebro Extra: from n/a through <= 1.6.8.

EPSS

Процентиль: 17%

0.00056

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-80