mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
732 B
732 B
CVE-2018-5363
Description
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[enabled_languages][en] or wpglobus_option[enabled_languages][fr] (or any other language) parameter to wp-admin/options.php.
POC
Reference
- https://github.com/d4wner/Vulnerabilities-Report/blob/master/wpglobus.md
- https://wpvulndb.com/vulnerabilities/9003
Github
No PoCs found on GitHub currently.