5.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
44.7%
Cross-site scripting vulnerability in CTA post function of VK All in One Expansion Unit 9.88.1.0 and earlier allows a remote authenticated attacker to inject an arbitrary script.
jvn.jp/en/jp/JVN95792402/
www.vektor-inc.co.jp/product-update/vk-blocks-exunit-xss/