PT-2018-14719 · WordPress · Wp Editor.Md

H4Ckforjob

Publicado

2018-11-04

Atualizado

2018-12-11

CVE-2018-18919

CVSS v3.1

4.8

Média

Vetor

AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions WP Editor.md plugin version 10.0.1

Description The issue allows for XSS via the comment area, which can be exploited to execute malicious scripts.

Recommendations For WP Editor.md plugin version 10.0.1, update to a newer version that contains a fix for this issue.

Exploit

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2018-18919

Wp Editor.Md