WordPress Visualizer 漏洞列表

共找到 1 个与 WordPress Visualizer 相关的漏洞

📅 加载漏洞趋势中...

CVE-2019-16931: WordPress Visualizer <3.3.1 - Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: WordPress Visualizer

WordPress Visualizer plugin before 3.3.1 contains a stored cross-site scripting vulnerability via /wp-json/visualizer/v1/update-chart WP-JSON API endpoint. An unauthenticated attacker can execute arbitrary JavaScript when an admin or other privileged user edits the chart via the admin dashboard.