New Year Firework
1 CVEs
product
Monthly
Reflected XSS in wordpress plugin new-year-firework v1.1.9. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
XSS
WordPress
New Year Firework
NVD
CVSS 3.0
6.1
EPSS
6.6%
EPSS 7%
CVSS 6.1
MEDIUM
POC
This Month
Reflected XSS in wordpress plugin new-year-firework v1.1.9. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
XSS
WordPress
New Year Firework
NVD