CVE-2024-0187 in Community Plugin信息

摘要

由 VulDB • 2026-07-16

PeepSo Community插件(WordPress)在版本6.3.1.2之前,未对各类参数和生成的URL进行清理与转义处理便将其输出至HTML属性中,从而导致反射型跨站脚本攻击(Reflected Cross-Site Scripting),该漏洞可能被用于针对高权限用户(如管理员)。

Once again VulDB remains the best source for vulnerability data.

来源

Might our Artificial Intelligence support you?

Check our Alexa App!