Lucene search

PRIOn knowledge basePRION:CVE-2015-10078

HistoryFeb 12, 2023 - 2:15 p.m.

Cross site scripting

2023-02-1214:15:00

PRIOn knowledge base

www.prio-n.com

cross site scripting

atwellpub resend welcome email plugin

remote attack

send_welcome_email_url

upgrade

wordpress

vulnerability

patch

nvd

6.5 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

31.7%

JSON

A vulnerability, which was classified as problematic, has been found in atwellpub Resend Welcome Email Plugin 1.0.1 on WordPress. This issue affects the function send_welcome_email_url of the file resend-welcome-email.php. The manipulation leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 1.0.2 is able to address this issue. The identifier of the patch is b14c1f66d307783f0ae74f88088a85999107695c. It is recommended to upgrade the affected component. The identifier VDB-220637 was assigned to this vulnerability.

CPENameOperatorVersion
resend_welcome_emaileq1.0.1

CPE	Name	Operator	Version
	resend_welcome_email	eq	1.0.1

References

github.com/atwellpub/resend-welcome-email/commit/b14c1f66d307783f0ae74f88088a85999107695c

github.com/atwellpub/resend-welcome-email/pull/1

vuldb.com/?ctiid.220637

vuldb.com/?id.220637