CVE-2023-6050 in Estatik Real Estate Pluginالمعلومات

الملخص

بحسب MITRE • 15/01/2024

The Estatik Real Estate Plugin WordPress plugin before 4.1.1 does not sanitise and escape various parameters and generated URLs before outputting them back in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

حجز

09/11/2023

إفشاء

15/01/2024

الاعتدال

تمت الموافقة

إدخال

VDB-250746

EPSS

0.00420

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Might our Artificial Intelligence support you?

Check our Alexa App!