exploitDog

CVE-2025-8282

Опубликовано: 23 сент. 2025

Источник: nvd

CVSS3: 3.5

EPSS Низкий

Описание

The SureForms WordPress plugin before 1.9.1 does not sanitise and escape some parameters when outputing them in the page, which could allow admin and above users to perform Cross-Site Scripting attacks.

Ссылки

https://wpscan.com/vulnerability/62680106-1313-4ef0-80a5-33e93b4221a1/

EPSS

Процентиль: 15%

0.00048

Низкий

3.5 Low

CVSS3

Дефекты

Связанные уязвимости

GHSA-m7f8-rpm5-xmqj

CVSS3: 6.1

github

5 месяцев назад

The SureForms WordPress plugin before 1.9.1 does not sanitise and escape some parameters when outputing them in the page, which could allow admin and above users to perform Cross-Site Scripting attacks.

EPSS

Процентиль: 15%

0.00048

Низкий

3.5 Low

CVSS3

Дефекты