CVE-2017-20177 in WangGuard Plugininfo

Zusammenfassung

von MITRE • 06.02.2023

A vulnerability, which was classified as problematic, has been found in WangGuard Plugin 1.8.0. Affected by this issue is the function wangguard_users_info of the file wangguard-user-info.php of the component WGG User List Handler. The manipulation of the argument userIP leads to cross site scripting. The attack may be launched remotely. The name of the patch is 88414951e30773c8d2ec13b99642688284bf3189. It is recommended to apply a patch to fix this issue. VDB-220214 is the identifier assigned to this vulnerability.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Reservieren

05.02.2023

Veröffentlichung

06.02.2023

Moderieren

akzeptiert

Eintrag

VDB-220214

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

6.1 (NVD)

EPSS

0.00637

KEV

nein

Aktivitäten

very low

Sektor

Hostingprovider

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-20177
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-20177
CVE Details	https://www.cvedetails.com/cve/CVE-2017-20177/

◂ Zurück Übersicht Weiter ▸

Do you know our Splunk app?

Download it now for free!