cve/CVE-2019-16250.md at d265b01db84ea263ae08fa7d2c08cb82387c2083

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 11:06:19 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

700 B

Raw Blame History

CVE-2019-16250

Description

includes/wizard/wizard.php in the Ocean Extra plugin through 1.5.8 for WordPress allows unauthenticated options changes and injection of a Cascading Style Sheets (CSS) token sequence.

POC

Reference

https://blog.nintechnet.com/settings-change-and-css-injection-in-wordpress-ocean-extra-plugin/

Github

No PoCs found on GitHub currently.

700 B Raw Blame History

CVE-2019-16250

Description

POC

Reference

Github

700 B

Raw Blame History