CVE-2025-1401 in WP Click Info Plugininformazioni

Riassunto

di MITRE • 13/03/2025

The WP Click Info WordPress plugin through 2.7.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsabile

WPScan

Prenotare

17/02/2025

Divulgazione

13/03/2025

Moderazione

accettato

CPE

pronto

EPSS

0.00253

KEV

no

Attività

molto basso

Fonti

Do you need the next level of professionalism?

Upgrade your account now!