1 results (0.005 seconds)

CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 2

Cross-site scripting (XSS) vulnerability in skysa-official/skysa.php in Skysa App Bar Integration plugin, possibly before 1.04, for WordPress allows remote attackers to inject arbitrary web script or HTML via the submit parameter. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en skysa-official/skysa.php en el plugin Skysa App Bar Integration, posiblemente anteriores a v1.04, para WordPress, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través del parámetro submit. • https://www.exploit-db.com/exploits/36363 http://www.securityfocus.com/archive/1/520662/100/0/threaded http://www.securityfocus.com/bid/50824 https://exchange.xforce.ibmcloud.com/vulnerabilities/71486 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •