Cross site scripting

2019-08-2015:15:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.9%

The crayon-syntax-highlighter plugin before 2.8.4 for WordPress has multiple XSS issues via AJAX requests.

CPENameOperatorVersion
crayon_syntax_highlighterlt2.8.4

CPE	Name	Operator	Version
	crayon_syntax_highlighter	lt	2.8.4

References

github.com/aramk/crayon-syntax-highlighter/commit/7fdb2e6b4c65178b4ed01ff08a8a38afe5a5151e

github.com/aramk/crayon-syntax-highlighter/issues/347

wordpress.org/plugins/crayon-syntax-highlighter/