Vulnerability Description
Reflected XSS in wordpress plugin tidio-form v1.0
CVSS Score
6.1
MEDIUM
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tidio-Form Project | Tidio-Form | 1.0 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/93579Technical DescriptionVDB Entry
- http://www.vapidlabs.com/wp/wp_advisory.php?v=799ExploitThird Party Advisory
- https://wordpress.org/plugins/tidio-formNot Applicable
- http://www.securityfocus.com/bid/93579Technical DescriptionVDB Entry
- http://www.vapidlabs.com/wp/wp_advisory.php?v=799ExploitThird Party Advisory
- https://wordpress.org/plugins/tidio-formNot Applicable
FAQ
What is CVE-2016-1000152?
CVE-2016-1000152 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Reflected XSS in wordpress plugin tidio-form v1.0
How severe is CVE-2016-1000152?
CVE-2016-1000152 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-1000152?
Check the references section above for vendor advisories and patch information. Affected products include: Tidio-Form Project Tidio-Form.