Vulnerability Details CVE-2015-7667
Multiple cross-site scripting (XSS) vulnerabilities in (1) templates/admanagement/admanagement.php and (2) templates/adspot/adspot.php in the ResAds plugin before 1.0.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the page parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.8%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
- http://www.securityfocus.com/archive/1/536601/100/0/threaded
- https://wordpress.org/plugins/resads/#developers
- https://wpvulndb.com/vulnerabilities/8204
- http://www.securityfocus.com/archive/1/536601/100/0/threaded
- https://wordpress.org/plugins/resads/#developers
- https://wpvulndb.com/vulnerabilities/8204