CVE-2023-2813

🗓️ 04 Sep 2023 11:27:00Reported by WPScanType

cve🔗 web.nvd.nist.gov👁 133 Views🌐 WEB

Aapna, Anand, Anfaust WordPress themes and others suffer from XSS vulnerabilit

Reporter	Title	Published	Views	Family All 21
Circl	CVE-2023-2813	4 Sep 202316:16	–	circl
CNNVD	WordPress Multi Themes Cross-Site Scripting Vulnerability	4 Sep 202300:00	–	cnnvd
Cvelist	CVE-2023-2813 Multiple Themes - Reflected XSS	4 Sep 202311:27	–	cvelist
EUVD	EUVD-2023-34266	3 Oct 202520:07	–	euvd
Nuclei	Wordpress Multiple Themes - Reflected Cross-Site Scripting	6 Jun 202603:01	–	nuclei
NVD	CVE-2023-2813	4 Sep 202312:15	–	nvd
Patchstack	WordPress Arendelle Theme <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)	17 Aug 202300:00	–	patchstack
Patchstack	WordPress BunnyPressLite Theme < 2.1 is vulnerable to Cross Site Scripting (XSS)	17 Aug 202300:00	–	patchstack
Patchstack	WordPress Bazaar Lite Theme <= 1.8.5 is vulnerable to Cross Site Scripting (XSS)	17 Aug 202300:00	–	patchstack
Patchstack	WordPress Cafe Bistro Theme < 1.1.4 is vulnerable to Cross Site Scripting (XSS)	17 Aug 202300:00	–	patchstack

NVD

Vulners

Node

ajaydsouza connections_reloadedRange≤3.1wordpress

archimidismertzanos atlast_businessRange≤1.5.8.5wordpress

archimidismertzanos fashionable_storeRange≤1.3.4wordpress

archimidismertzanos nothing_personalRange≤1.0.7wordpress

arthousewebdesign brain_powerRange≤1.2wordpress

asmedia moseterRange≤1.3.1wordpress

asmedia tuaug4Range≤1.4wordpress

ayecode cafe_bistroRange<1.1.4wordpress

ayecode collegeRange<1.5.1wordpress

ayecode directoryRange<3.0.2wordpress

ayecode platoRange<1.1.9wordpress

ayecode restaurant_ptRange<1.1.3wordpress

ayecode wedding_brideRange<1.0.2wordpress

climaxthemes kataRange<1.2.9wordpress

competethemes dropRange<1.22wordpress

davidgarlitz vialaRange≤1.3.1wordpress

deothemes arendelleRange<1.1.13wordpress

deothemes everseRange<1.2.4wordpress

deothemes nokkeRange<1.2.4wordpress

dotecsa ilexRange<1.4.2wordpress

dotecsa viburnoRange<1.3.2wordpress

fredriksoerlie ultralightRange≤1.2wordpress

fyrewurks polka_dotsRange≤1.2wordpress

fyrewurks tiki_timeRange≤1.3wordpress

henleythemes counterpointRange≤1.8.1wordpress

iznyn opor_ayamRange≤1.8wordpress

iznyn purity_of_soulRange≤1.9wordpress

jinwen js_o3_liteRange≤1.5.8.2wordpress

jinwen js_paperRange≤2.5.7wordpress

marchettidesign fullbaseRange<1.2.1wordpress

marchettidesign wlowRange<1.2.7wordpress

omarfolgheraiter digitallyRange≤1.0.8wordpress

saumendra aapnaRange≤1.3wordpress

saumendra anandRange≤1.2wordpress

ta2g tantyyellowRange≤1.0.0.5wordpress

themeinprogress bazaar_liteRange<1.8.6wordpress

themeinprogress looki_liteRange<1.3.0wordpress

themeinprogress saulRange<1.1.0wordpress

themeinprogress saul_liteRange<1.4.6wordpress

themeinprogress venice_liteRange≤1.5.5wordpress

thewebhunter anfaustRange≤1.1wordpress

thewebhunter offset_writingRange≤1.2wordpress

thriveweb pinzoloRange<1.2.10wordpress

tijaji tijajiRange≤1.43wordpress

wpmole tydskrifRange≤1.1.3wordpress

yws bunnypress_liteRange≤2.1wordpress

[
  {
    "vendor": "Unknown",
    "product": "Aapna",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.3"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Anand",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.2"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Anfaust",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.1"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Arendelle",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.1.13"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Atlast Business",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.5.8.5"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Bazaar Lite",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.8.6"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Brain Power",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.2"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "BunnyPressLite",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "2.1"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Cafe Bistro",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.1.4"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "College",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.5.1"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Connections Reloaded",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "3.1"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Counterpoint",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.8.1"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Digitally",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.0.8"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Directory",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "3.0.2"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Drop",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.22"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Everse",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.2.4"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Fashionable Store",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.3.4"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Fullbase",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.2.1"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Ilex",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.4.2"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Js O3 Lite",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.5.8.2"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Js Paper",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "2.5.7"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Kata",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.2.9"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Kata App",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.0.5"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Kata Business",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.0.2"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Looki Lite",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.3.0"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "moseter",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.3.1"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Nokke",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.2.4"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Nothing Personal",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.0.7"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Offset Writing",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.2"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Opor Ayam",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.8"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Pinzolo",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.2.10"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Plato",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.1.9"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Polka Dots",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.2"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Purity Of Soul",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.9"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Restaurant PT",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.1.3"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Saul",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.1.0"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Sean Lite",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.4.6"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Tantyyellow",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.0.0.5"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "TIJAJI",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.43"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Tiki Time",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.3"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Tuaug4",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.4"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Tydskrif",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.1.3"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "UltraLight",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.2"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "Venice Lite",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.5.5"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Viala",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThanOrEqual": "1.3.1"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "Unknown",
    "product": "viburno",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.3.2"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Wedding Bride",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.0.2"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Unknown",
    "product": "Wlow",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.2.7"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
wpscan	www.wpscan.com/vulnerability/f434afd3-7de4-4bf4-a9bb-9f9aeaae1dc5

Parameter	Position	Path	Description	CWE
s	query param	/?s=katana<IMG """><IMG SRC=/ onerror="alert(1)"></img>/asd/	XSS via search results reflection in theme search box as described in CVE-2023-2813	CWE-79

21 Nov 2024 07:59Current

6.2Medium risk

Vulners AI Score6.2

CVSS 3.16.1

EPSS0.02549