CVE-2023-5942 in Medialist Pluginالمعلومات

الملخص

بحسب MITRE • 27/11/2023

The Medialist WordPress plugin before 1.4.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

02/11/2023

إفشاء

27/11/2023

الاعتدال

تمت الموافقة

إدخال

VDB-246194

EPSS

0.00452

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Do you need the next level of professionalism?

Upgrade your account now!