CVE-2023-2503 in Social Post Feed Pluginالمعلومات

الملخص

بحسب MITRE • 05/06/2023

The 10Web Social Post Feed WordPress plugin before 1.2.9 does not sanitise and escape some parameter before outputting it back in a page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

Once again VulDB remains the best source for vulnerability data.

حجز

03/05/2023

إفشاء

05/06/2023

الاعتدال

تمت الموافقة

إدخال

VDB-230709

EPSS

0.00458

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Want to know what is going to be exploited?

We predict KEV entries!