Lucene search
HistoryApr 25, 2023 - 7:15 p.m.
CVE-2023-25793
cve-2023-25793
nvd
auth
stored
xss
george pattihis
link juice keeper
plugin
vulnerability
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
0.0005 Low
EPSS
Percentile
17.7%
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in George Pattihis Link Juice Keeper plugin <=Β 2.0.2 versions.
Affected configurations
Node
george_pattihislink_juice_keeperRangeβ€2.0.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| link_juice_keeper_project:link_juice_keeper | link juice keeper project link juice keeper | lt | 2.0.3 |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "link-juice-keeper",
"product": "Link Juice Keeper",
"vendor": "George Pattihis",
"versions": [
{
"changes": [
{
"at": "2.0.3",
"status": "unaffected"
}
],
"lessThanOrEqual": "2.0.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-25793
2023-04-25 19:15:10
cvelist
cvelist
prion
prion
Cross site scripting
2023-04-25 19:15:00
wpvulndb
wpvulndb
Link Juice Keeper < 2.0.3 - Admin+ Stored XSS
2023-02-10 00:00:00
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
0.0005 Low
EPSS
Percentile
17.7%
Related for CVE-2023-25793