CVE-2024-3548 in WP Shortcodes PluginИнформация

Сводка

по MITRE • 15.05.2024

The WP Shortcodes Plugin — Shortcodes Ultimate WordPress plugin before 7.1.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Резервировать

09.04.2024

Раскрытие

15.05.2024

Модерация

принято

Вход

VDB-264416

EPSS

0.00441

KEV

Нет

Деятельности

Очень низкий

Сектор

Hostingprovider

Источники

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!