CVE-2020-36656
Spectra < 1.15.0 - Contributor+ Stored Cross-Side Scripting
The Spectra WordPress plugin before 1.15.0 does not sanitize user input as it reaches its style HTML attribute, allowing contributors to conduct stored XSS attacks via the plugin's Gutenberg blocks.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Produtos afetados
Unknown · SpectraQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →