The ActivityPub WordPress plugin... CVE-2023-5057

- AV AC AU C I A
发布: 2023-10-16
修订: 2023-11-07

The ActivityPub WordPress plugin before 1.0.0 does not escape user metadata before outputting them in mentions, which could allow users with a role of Contributor and above to perform Stored XSS attacks

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息