CVE-2019-16250

2019-09-1123:15:14

CWE-287

web.nvd.nist.gov

cve-2019-16250

ocean extra plugin

wordpress

unauthenticated options changes

css injection

nvd

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.9%

CPENameOperatorVersion
oceanwp:ocean_extraoceanwp ocean extrale1.5.8

CPE	Name	Operator	Version
oceanwp:ocean_extra	oceanwp ocean extra	le	1.5.8

References

blog.nintechnet.com/settings-change-and-css-injection-in-wordpress-ocean-extra-plugin/