Количество 2
Количество 2
CVE-2020-13487
The bbPress plugin through 2.6.4 for WordPress has stored XSS in the Forum creation section, resulting in JavaScript execution at wp-admin/edit.php?post_type=forum (aka the Forum listing page) for all users. An administrator can exploit this at the wp-admin/post.php?action=edit URI.
GHSA-p9xp-xghp-gqvp
bbPress stored Cross-Site Scripting (XSS) vulnerability in the Forum creation section
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-13487 The bbPress plugin through 2.6.4 for WordPress has stored XSS in the Forum creation section, resulting in JavaScript execution at wp-admin/edit.php?post_type=forum (aka the Forum listing page) for all users. An administrator can exploit this at the wp-admin/post.php?action=edit URI. | CVSS3: 4.8 | 1% Низкий | больше 5 лет назад |
| GHSA-p9xp-xghp-gqvp bbPress stored Cross-Site Scripting (XSS) vulnerability in the Forum creation section | CVSS3: 4.8 | 1% Низкий | больше 3 лет назад |
Уязвимостей на страницу