CVE-2023-6050 in Estatik Real Estate Plugininformación

Resumen

por MITRE • 2024-01-15

The Estatik Real Estate Plugin WordPress plugin before 4.1.1 does not sanitise and escape various parameters and generated URLs before outputting them back in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservar

2023-11-09

Divulgación

2024-01-15

Moderación

aceptado

Artículo

VDB-250746

CPE

listo

EPSS

0.00420

KEV

no

Actividades

muy bajo

Fuentes

Do you want to use VulDB in your project?

Use the official API to access entries easily!