1 results (0.010 seconds)

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1

The music-store plugin before 1.0.43 for WordPress has XSS via the wp-admin/admin.php?page=music-store-menu-reports from_year parameter. El plugin music-store versiones anteriores a 1.0.43 para WordPress, presenta una vulnerabilidad de tipo XSS por medio del parámetro from_year de wp-admin/admin.php?page=music-store-menu-reports. • https://packetstormsecurity.com/files/136445 https://wordpress.org/plugins/music-store/#developers https://wpvulndb.com/vulnerabilities/8429 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •