Add2Fav
1 CVEs
product
Monthly
Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Christian Salazar's add2fav plugin <= 1.0 at WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
XSS
WordPress
Add2Fav
NVD
CVSS 3.1
4.8
EPSS
0.5%
EPSS 0%
CVSS 4.8
MEDIUM
This Month
Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Christian Salazar's add2fav plugin <= 1.0 at WordPress. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
XSS
WordPress
Add2Fav
NVD