Количество 3
Количество 3
CVE-2023-2224
The SEO by 10Web WordPress plugin before 1.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
GHSA-43hf-xmxj-8rwm
The SEO by 10Web WordPress plugin before 1.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
BDU:2023-07343
Уязвимость плагина SEO by 10Web системы управления содержимым сайта WordPress, позволяющая нарушителю проводить межсайтовые сценарные атаки
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-2224 The SEO by 10Web WordPress plugin before 1.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup). | CVSS3: 4.8 | 1% Низкий | больше 2 лет назад |
| GHSA-43hf-xmxj-8rwm The SEO by 10Web WordPress plugin before 1.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup). | CVSS3: 4.8 | 1% Низкий | больше 2 лет назад |
 | BDU:2023-07343 Уязвимость плагина SEO by 10Web системы управления содержимым сайта WordPress, позволяющая нарушителю проводить межсайтовые сценарные атаки | CVSS3: 6.1 | 1% Низкий | больше 2 лет назад |
Уязвимостей на страницу