PT-2019-7375 · Wpml · Sitepress-Multilingual-Cms
Publicado
2019-09-25
·
Atualizado
2019-09-26
·
CVE-2015-9416
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
sitepress-multilingual-cms (WPML) plugin versions 2.9.3 through 3.2.6
Description
The issue is related to a Cross-Site Scripting (XSS) vulnerability. It occurs via the Accept-Language HTTP header.
Recommendations
For sitepress-multilingual-cms (WPML) plugin versions 2.9.3 through 3.2.6, update to a version outside of this range to resolve the issue.
Exploit
Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Sitepress-Multilingual-Cms