Lucene search
HistoryNov 13, 2023 - 10:15 a.m.
CVE-2023-40335
cve-2023-40335
csrf
cleverwise daily quotes
stored xss
7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
0.0005 Low
EPSS
Percentile
17.0%
Cross-Site Request Forgery (CSRF) vulnerability in Jeremy O’Connell Cleverwise Daily Quotes allows Stored XSS.This issue affects Cleverwise Daily Quotes: from n/a through 3.2.
Affected configurations
Node
jeremy_o\'connellcleverwise_daily_quotesRange≤3.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| cyberws:cleverwise_daily_quotes | cyberws cleverwise daily quotes | le | 3.2 |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "cleverwise-daily-quotes",
"product": "Cleverwise Daily Quotes",
"vendor": "Jeremy O'Connell",
"versions": [
{
"lessThanOrEqual": "3.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Cleverwise Daily Quotes <= 3.2 - Stored XSS via CSRF
2023-11-17 00:00:00
prion
prion
Cross site request forgery (csrf)
2023-11-13 10:15:00
cvelist
cvelist
nvd
nvd
CVE-2023-40335
2023-11-13 10:15:07
wordfence
wordfence
7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
0.0005 Low
EPSS
Percentile
17.0%
Related for CVE-2023-40335