漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Easy Social Icons < 3.2.1 - Admin+ Stored Cross-Site Scripting in add icon
Vulnerability Description
The Easy Social Icons WordPress plugin before 3.2.1 does not properly escape the image_file field when adding a new social icon, allowing high privileged users to inject arbitrary javascript even when the unfiltered_html capability is disallowed.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
WordPress Easy Social Icons plugin跨站脚本漏洞
Vulnerability Description
WordPress等都是WordPress(Wordpress)基金会的产品。WordPress是一套使用PHP语言开发的博客平台。WordPress plugin等都是(WordPress)开源的产品。WordPress plugin是一个应用插件。cybernetikz Easy Social Icons等都是(cybernetikz)个人开发者的产品。Easy Social Icons是一个 WordPress 插件。 WordPress Easy Social Icons plugin存在跨站脚本
CVSS Information
N/A
Vulnerability Type
N/A