XSS Vulnerability in Pricing Table Plugin for WordPress by Supsystic
CVE-2020-9393
7.2HIGH
Key Information:
- Vendor
- Wordpress
- Vendor
- CVE Published:
- 25 February 2020
Summary
A vulnerability exists in the Pricing Table by Supsystic plugin for WordPress, where improper handling of user input can lead to Cross-Site Scripting (XSS) attacks. This issue, found in versions prior to 1.8.2, allows attackers to inject malicious scripts into web pages viewed by unsuspecting users, potentially compromising user data and site integrity.
References
CVSS V3.1
Score:
7.2
Severity:
HIGH
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved