Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Vulnerability Details CVE-2017-18603
The postman-smtp plugin through 2017-10-04 for WordPress has XSS via the wp-admin/tools.php?page=postman_email_log page parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score
0.002
EPSS Ranking
43.7%
CVSS Severity
CVSS v3 Score
6.1
CVSS v2 Score
4.3
References
https://wordpress.org/plugins/postman-smtp/#developers
https://www.pluginvulnerabilities.com/2017/06/29/reflected-cross-site-scripting-xss-vulnerability-in-postman-smtp/
https://wordpress.org/plugins/postman-smtp/#developers
https://www.pluginvulnerabilities.com/2017/06/29/reflected-cross-site-scripting-xss-vulnerability-in-postman-smtp/
Products affected by CVE-2017-18603
Postman-Smtp Project
»
Postman-Smtp
»
Version:
N/A
cpe:2.3:a:postman-smtp_project:postman-smtp:-
Postman-Smtp Project
»
Postman-Smtp
»
Version:
2017-10-04
cpe:2.3:a:postman-smtp_project:postman-smtp:2017-10-04
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved