Lucene search
+L

WordPress plugin ActivityPub cross-site scripting vulnerability

🗓️ 16 Oct 2023 00:00:00Reported by China National Vulnerability Database of Information SecurityType 
cnnvd
 cnnvd
🔗 www.cnnvd.org.cn👁 6 Views

The WordPress ActivityPub plugin has cross-site scripting vulnerability prior to version 1.0.0 due to insufficient escaping.

Related
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2023-3746
17 Oct 202300:32
circl
CVE
CVE-2023-3746
16 Oct 202319:39
cve
Cvelist
CVE-2023-3746 ActivityPub for WordPress < 1.0.1 - Contributor+ Stored XSS
16 Oct 202319:39
cvelist
EUVD
EUVD-2023-44381
3 Oct 202520:07
euvd
NVD
CVE-2023-3746
16 Oct 202320:15
nvd
OSV
CVE-2023-3746
16 Oct 202320:15
osv
Patchstack
WordPress ActivityPub Plugin < 1.0.1 is vulnerable to Cross Site Scripting (XSS)
26 Sep 202300:00
patchstack
Prion
Cross site scripting
16 Oct 202320:15
prion
RedhatCVE
CVE-2023-3746
23 May 202503:34
redhatcve
Vulnrichment
CVE-2023-3746 ActivityPub for WordPress < 1.0.1 - Contributor+ Stored XSS
16 Oct 202319:39
vulnrichment
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

16 Jan 2026 00:00Current
6.1Medium risk
Vulners AI Score6.1
CVSS 3.15.4
EPSS0.00403
SSVC
6