Vulnerabilities > CVE-2015-9318 - 7PK - Security Features vulnerability in Getawesomesupport Awesome Support

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
getawesomesupport
CWE-254
NVD
Published: 2019-08-20
Updated: 2019-08-22

Summary

The awesome-support plugin before 3.1.7 for WordPress has a security issue in which shortcodes are allowed in replies.

Vulnerable Configurations

Part Description Count
Application
Getawesomesupport
10

Common Weakness Enumeration (CWE)

References