Lucene search
PatchstackCVE-2023-32497HistoryAug 23, 2023 - 2:15 p.m.
CVE-2023-32497
2023-08-2314:15:08
CWE-79
Patchstack
web.nvd.nist.gov
19
cve-2023-32497
authorization
stored xss
cross-site scripting
supersoju block referer spam plugin
security vulnerability
CVSS3
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
21.6%
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Supersoju Block Referer Spam plugin <=Β 1.1.9.4 versions.
Affected configurations
Node
supersojublock_referer_spamRangeβ€1.1.9.4wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| supersoju | block_referer_spam | * | cpe:2.3:a:supersoju:block_referer_spam:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "block-referer-spam",
"product": "Block Referer Spam",
"vendor": "Supersoju",
"versions": [
{
"changes": [
{
"at": "1.1.9.5",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.1.9.4",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-32497
2023-08-23 14:15:08
prion
prion
Cross site scripting
2023-08-23 14:15:00
wpvulndb
wpvulndb
Block Referer Spam < 1.1.9.5 - Admin+ Stored XSS
2023-08-23 00:00:00
cvelist
cvelist
wordfence
wordfence
CVSS3
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
21.6%
Related for CVE-2023-32497