Lucene search

K
cve[email protected]CVE-2023-31074
HistoryAug 17, 2023 - 11:15 a.m.

CVE-2023-31074

2023-08-1711:15:23
CWE-79
web.nvd.nist.gov
10
cve-2023-31074
unauthenticated
reflected
xss
vulnerability
hupe13 extensions
leaflet map
nvd

7.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

0.0005 Low

EPSS

Percentile

17.0%

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in hupe13 Extensions for Leaflet Map plugin <=Β 3.4.1 versions.

Affected configurations

Vulners
NVD
Node
hupe13extensions_for_leaflet_mapRange≀3.4.1
VendorProductVersionCPE
hupe13extensions_for_leaflet_map*cpe:2.3:a:hupe13:extensions_for_leaflet_map:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "extensions-leaflet-map",
    "product": "Extensions for Leaflet Map",
    "vendor": "hupe13",
    "versions": [
      {
        "changes": [
          {
            "at": "3.4.2",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "3.4.1",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

7.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

0.0005 Low

EPSS

Percentile

17.0%

Related for CVE-2023-31074