← back
CVE-2018-10371

CVE-2018-10371

EPSS 6.4%
An issue was discovered in the wunderfarm WF Cookie Consent plugin 1.1.3 for WordPress. A persistent cross-site scripting vulnerability has been identified in the web interface of the plugin that allows the execution of arbitrary HTML/script code to be executed in a victim's web browser via a page title.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/44585/unverifiedexploitdbwww.exploit-db.com/exploits/44585unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://gist.github.com/B0UG/8615df3fe83a4deca07334af783696d6https://wordpress.org/plugins/wf-cookie-consent/#developershttps://wpvulndb.com/vulnerabilities/9080https://www.exploit-db.com/exploits/44585/