Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gistpress project gistpress vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2020-8498
XSS exists in the shortcode functionality of the GistPress plugin prior to 3.0.2 for WordPress via the includes/class-gistpress.php id parameter. This allows an attacker with the WordPress Contributor role to execute arbitrary JavaScript code with the privileges of other users (e...