Miembros de
Boletines de Vulnerabilidades |
Multiple Vulnerabilities Patched in Pricing Table by Supsystic Plugin |
|
Información sobre el sistema |
|
| Software afectado | Wordpress |
Descripción |
|
|
https://www.wordfence.com/blog/2020/02/multiple-vulnerabilities-patched-in-pricing-table-by-supsystic-plugin/ On January 17th, our Threat Intelligence Team discovered several vulnerabilities in Pricing Table by Supsystic, a WordPress plugin installed on over 40,000 sites. These flaws allowed an unauthenticated user to execute several AJAX actions due to an insecure permissions weakness. Attackers were also able to inject malicious Javascript due to a Cross-Site Scripting (XSS) […] More info: https://www.wordfence.com/blog/2020/02/multiple-vulnerabilities-patched-in-pricing-table-by-supsystic-plugin/ |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2020-9392 ,CVE-2020-9393 and CVE-2020-9394. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2020-02-27 |