CVE-2020-6849

CVE-2020-6849

EPSS 1.3%

The marketo-forms-and-tracking plugin through 1.0.2 for WordPress allows wp-admin/admin.php?page=marketo_fat CSRF with resultant XSS.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://wordpress.org/plugins/marketo-forms-and-tracking/#developers https://wpvulndb.com/vulnerabilities/10031 https://zeroauth.ltd/blog/