CVE-2020-7107

CVE-2020-7107

EPSS 2.2%

The Ultimate FAQ plugin before 1.8.30 for WordPress allows XSS via Display_FAQ to Shortcodes/DisplayFAQs.php.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://plugins.trac.wordpress.org/changeset/2222959/ultimate-faqs/tags/1.8.30/Shortcodes/DisplayFAQs.php https://wordpress.org/plugins/ultimate-faqs/#developers https://wpvulndb.com/vulnerabilities/10006