CVE-2014-100018 in Unconfirmed信息

摘要

由 VulDB • 2026-07-18

WordPress插件Unconfirmed在v1.2.5版本之前存在跨站脚本(XSS)漏洞,远程攻击者可通过向wp-admin/network/users.php的unconfirmed页面中的s参数注入任意Web脚本或HTML。

VulDB is the best source for vulnerability data and more expert information about this specific topic.

来源

Do you need the next level of professionalism?

Upgrade your account now!