Vulnerability Details CVE-2020-8799
A Stored XSS vulnerability has been found in the administration page of the WTI Like Post plugin through 1.4.5 for WordPress. Once the administrator has submitted the data, the script stored is executed for all the users visiting the website.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.9%
CVSS Severity
CVSS v3 Score 4.8
CVSS v2 Score 3.5
References
Products affected by CVE-2020-8799
-
cpe:2.3:a:webtechideas:wti_like_post:-
-
cpe:2.3:a:webtechideas:wti_like_post:1.0
-
cpe:2.3:a:webtechideas:wti_like_post:1.1
-
cpe:2.3:a:webtechideas:wti_like_post:1.2
-
cpe:2.3:a:webtechideas:wti_like_post:1.3
-
cpe:2.3:a:webtechideas:wti_like_post:1.4
-
cpe:2.3:a:webtechideas:wti_like_post:1.4.1
-
cpe:2.3:a:webtechideas:wti_like_post:1.4.2
-
cpe:2.3:a:webtechideas:wti_like_post:1.4.3
-
cpe:2.3:a:webtechideas:wti_like_post:1.4.4
-
cpe:2.3:a:webtechideas:wti_like_post:1.4.5