关键漏洞信息 漏洞类型: Cross Site Scripting (XSS) 受影响版本: WordPress WP Sitemap Plugin <= 1.0.0 CVSS评分: 6.5 风险等级: Low priority 官方修复: No official fix available 最后更新时间: Over a year ago 报告者: OxdarkSid3 发布时间: 01 April 2025 by Patchstack 风险描述 This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. 解决方案 Remove and replace software. This security issue has a low severity impact and is unlikely to be exploited. 其他信息 This software is likely abandoned and will likely not receive further updates or fixes. Deactivating the software does not remove the security threat unless a vPatch is deployed.