Lucene search

K
cve[email protected]CVE-2023-27619
HistoryApr 25, 2023 - 12:15 p.m.

CVE-2023-27619

2023-04-2512:15:09
CWE-79
web.nvd.nist.gov
17
cve-2023-27619
nvd
security
xss
vulnerability
macho themes regina lite

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

0.0005 Low

EPSS

Percentile

17.5%

Auth (subscriber+) Reflected Cross-Site Scripting (XSS) vulnerability in Macho Themes Regina Lite theme <= 2.0.7 versions.

Affected configurations

Vulners
NVD
Node
macho_themesregina_liteRange2.0.7

CNA Affected

[
  {
    "collectionURL": "https://wordpress.org/themes/",
    "defaultStatus": "unaffected",
    "packageName": "regina-lite",
    "product": "Regina Lite",
    "vendor": "Macho Themes",
    "versions": [
      {
        "lessThanOrEqual": "2.0.7",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

0.0005 Low

EPSS

Percentile

17.5%

Related for CVE-2023-27619