Added |
CPE Configuration |
|
OR
*cpe:2.3:a:smackcoders:echo_sign:*:*:*:*:*:wordpress:*:* versions up to (excluding) 1.2 |
Added |
CVSS V2 |
|
NIST (AV:N/AC:M/Au:N/C:N/I:P/A:N) |
Added |
CVSS V2 Metadata |
|
Victim must voluntarily interact with attack mechanism |
Added |
CVSS V3.1 |
|
NIST AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Added |
CWE |
|
CWE-79 |
Changed |
Reference Type |
https://0x62626262.wordpress.com/2016/04/21/echosign-plugin-for-wordpress-xss-vulnerability/ No Types Assigned |
https://0x62626262.wordpress.com/2016/04/21/echosign-plugin-for-wordpress-xss-vulnerability/ Exploit, Third Party Advisory |
Changed |
Reference Type |
https://wordpress.org/plugins/echosign/#developers No Types Assigned |
https://wordpress.org/plugins/echosign/#developers Release Notes |
Changed |
Reference Type |
https://wpvulndb.com/vulnerabilities/8465 No Types Assigned |
https://wpvulndb.com/vulnerabilities/8465 Third Party Advisory |