ID de Prueba:	1.3.6.1.4.1.25623.1.0.112178
Categoría:	Web application abuses
Título:	WordPress Add Link to Facebook Plugin Stored XSS Vulnerability
Resumen:	The Add Link to Facebook plugin for WordPress has stored-XSS via the al2fb_facebook_id parameter to wp-admin/profile.php.
Descripción:	Summary: The Add Link to Facebook plugin for WordPress has stored-XSS via the al2fb_facebook_id parameter to wp-admin/profile.php. Affected Software/OS: WordPress Add Link to Facebook plugin up to and including version 2.3. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 3.5 CVSS Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2018-5214 https://github.com/d4wner/Vulnerabilities-Report/blob/master/Add-Link-to-Facebook.md https://wordpress.org/support/topic/stored-xss-bug-at-the-latest-version-of-add-link-to-facebook/
Copyright	Copyright (C) 2018 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.