← Volver a CVEs
CVE-2017-20096
LOW3.5
Descripcion
A vulnerability classified as problematic has been found in WP-SpamFree Anti-Spam Plugin 2.1.1.4. This affects an unknown part. The manipulation leads to basic cross site scripting. It is possible to initiate the attack remotely.
Detalles CVE
Puntuacion CVSS v3.13.5
SeveridadLOW
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioREQUIRED
Publicado6/24/2022
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
wp-spamfree_anti-spam_project:wp-spamfree_anti-spam
Debilidades (CWE)
CWE-80CWE-79
Referencias
http://seclists.org/fulldisclosure/2017/Feb/79(cna@vuldb.com)
https://vuldb.com/?id.97371(cna@vuldb.com)
http://seclists.org/fulldisclosure/2017/Feb/79(af854a3a-2127-422b-91ae-364da2661108)
https://vuldb.com/?id.97371(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.