CVE-2017-20096

WP-SpamFree Anti-Spam Plugin cross site scriting

CVSS 3.5 LOWEPSS 0.6%CWE-80

A vulnerability classified as problematic has been found in WP-SpamFree Anti-Spam Plugin 2.1.1.4. This affects an unknown part. The manipulation leads to basic cross site scripting. It is possible to initiate the attack remotely.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Produtos afetados

unspecified · WP-SpamFree Anti-Spam Plugin

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://seclists.org/fulldisclosure/2017/Feb/79 https://vuldb.com/?id.97371