CVE-2025-1401 in WP Click Info Plugininformação

Sumário

de MITRE • 13/03/2025

The WP Click Info WordPress plugin through 2.7.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsável

WPScan

Reservar

17/02/2025

Divulgação

13/03/2025

Moderação

aceite

Entrada

VDB-299620

CPE

pronto

EPSS

0.00253

KEV

não

Atividades

muito baixo

Fontes

Want to stay up to date on a daily basis?

Enable the mail alert feature now!