CVE-2020-8799

2020-05-0515:03:18

mitre

www.cve.org

4.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.6%

JSON

A Stored XSS vulnerability has been found in the administration page of the WTI Like Post plugin through 1.4.5 for WordPress. Once the administrator has submitted the data, the script stored is executed for all the users visiting the website.

References

wordpress.org/plugins/wti-like-post/#developers

wpvulndb.com/vulnerabilities/10210