CVE-2017-9288

CVE-2017-9288

EPSS 4.0%

The Raygun4WP plugin 1.8.0 for WordPress is vulnerable to a reflected XSS in sendtesterror.php (backurl parameter).

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://jgj212.blogspot.kr/2017/05/a-reflected-xss-vulnerability-in.html https://github.com/MindscapeHQ/raygun4wordpress/issues/16 https://github.com/MindscapeHQ/raygun4wordpress/pull/17 https://wpvulndb.com/vulnerabilities/8836