CVE-2024-13896

WP-GeSHi-Highlight <= 1.4.3 - Author+ ReDoS

CVSS 6.5 MEDIUMEPSS 0.4%

The WP-GeSHi-Highlight — rock-solid syntax highlighting for 259 languages WordPress plugin through 1.4.3 processes user-supplied input as a regular expression via the wp_geshi_filter_replace_code() function, which could lead to Regular Expression Denial of Service (ReDoS) issue

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Produtos afetados

Unknown · WP-GeSHi-Highlight — rock-solid syntax highlighting for 259 languages

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://wpscan.com/vulnerability/b8b622ea-e090-45ad-8755-b050fc055231/