Описание
The Plus Addons for Elementor WordPress plugin before 6.3.16 does not sanitize SVG file contents, which could allow users with minimum role access as Author to perform Stored Cross-Site Scripting attacks.
EPSS
Процентиль: 11%
0.00038
Низкий
6.8 Medium
CVSS3
Дефекты
Связанные уязвимости
CVSS3: 6.8
github
4 дня назад
The Plus Addons for Elementor WordPress plugin before 6.3.16 does not sanitize SVG file contents, which could allow users with minimum role access as Author to perform Stored Cross-Site Scripting attacks.
EPSS
Процентиль: 11%
0.00038
Низкий
6.8 Medium
CVSS3