Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In the admin/db-backup-security/db-backup-security.php page in the BulletProof Security plugin before .52.5 for WordPress, XSS is possible for remote authenticated administrators via the DBTablePrefix parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WordPress BulletProof Security插件跨站脚本漏洞
Vulnerability Description
WordPress是WordPress软件基金会的一套使用PHP语言开发的博客平台,该平台支持在PHP和MySQL的服务器上架设个人博客网站。BulletProof Security是其中的一款防暴力破解的安全插件。 WordPress BulletProof Security插件.52.5之前的版本中admin/db-backup-security/db-backup-security.php页面存在跨站脚本漏洞。远程攻击可借助‘DBTablePrefix’参数利用该漏洞更改登录用户的密码,并使用户会话
CVSS Information
N/A
Vulnerability Type
N/A