Smyx

smyx

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Wp Connect

wp-connect

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-12282 1Smyx 1Wp Connect Jun 9, 2025 May 15, 2025 N/A· v4 6.1 MEDIUM· v3 N/A· v2 The WordPress连接微博 WordPress plugin through 2.5.6 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a...Show more The WordPress连接微博 WordPress plugin through 2.5.6 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2024-12282

1Smyx

1Wp Connect

Jun 9, 2025

May 15, 2025

N/A· v4

6.1 MEDIUM· v3

N/A· v2

The WordPress连接微博 WordPress plugin through 2.5.6 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a...Show more