CVE-2016-10112 in WooCommerce Plugininfo

Zusammenfassung

von MITRE

Cross-site scripting (XSS) vulnerability in the WooCommerce plugin before 2.6.9 for WordPress allows remote authenticated administrators to inject arbitrary web script or HTML by providing crafted tax-rate table values in CSV format.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

03.01.2017

Veröffentlichung

03.01.2017

Moderieren

akzeptiert

Eintrag

VDB-94919

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

4.8 (NVD)

EPSS

0.00121

KEV

nein

Aktivitäten

very low

Sektor

Hostingprovider, Transportation, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-10112
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-10112
CVE Details	https://www.cvedetails.com/cve/CVE-2016-10112/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!