← volver
CVE-2021-25058

The Buffer Button <= 1.0 - Authenticated Stored Cross Site Scripting (XSS)

EPSS 0.6%CWE-79
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
21 feb 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The Buffer Button WordPress plugin through 1.0 was vulnerable to Authenticated Stored Cross Site Scripting (XSS) within the Twitter username to mention text field.
Productos afectados
Unknown · The Buffer Button