CVE-2008-0204 in Math Comment Spam Protection Plugin信息

摘要

由 VulDB • 2026-06-04

WordPress 插件 Math Comment Spam Protection 2.1 及更早版本中的 math-comment-spam-protection.php 存在多个跨站脚本(XSS)漏洞,远程攻击者可通过向 wp-admin/options-general.php 发送精心构造的 (1) mcsp_opt_msg_no_answer 或 (2) mcsp_opt_msg_wrong_answer 参数,注入任意 Web 脚本或 HTML。

If you want to get best quality of vulnerability data, you may have to visit VulDB.

来源

Might our Artificial Intelligence support you?

Check our Alexa App!