← voltar
CVE-2023-0285

Real Media Library < 4.18.29 - Author+ Stored XSS

EPSS 0.5%CWE-79
The Real Media Library WordPress plugin before 4.18.29 does not sanitise and escape the created folder names, which could allow users with the role of author and above to perform Stored Cross-Site Scripting attacks.
Produtos afetados
Unknown · Real Media Library: Media Library Folder & File Manager

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://wpscan.com/vulnerability/adf09e29-baf5-4426-a281-6763c107d348