Lucene search
WPScanCVELIST:CVE-2023-0983HistoryApr 10, 2023 - 1:17 p.m.
CVE-2023-0983 Stylish Cost Calculator Premium < 7.9.0 - Unauthenticated Stored XSS
2023-04-1013:17:58
WPScan
www.cve.org
cve-2023-0983
stylish cost calculator
wordpress
unauthenticated stored xss
admins
email quote form
0.001 Low
EPSS
Percentile
29.8%
The stylish-cost-calculator-premium WordPress plugin before 7.9.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Stored Cross-Site Scripting which could be used against admins when viewing submissions submitted through the Email Quote Form.
CNA Affected
[
{
"vendor": "Unknown",
"product": "Stylish Cost Calculator Premium",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "7.9.0"
}
],
"defaultStatus": "unaffected"
}
]Related
nvd
nvd
CVE-2023-0983
2023-04-10 14:15:08
cve
cve
CVE-2023-0983
2023-04-10 14:15:08
wpexploit
wpexploit
Stylish Cost Calculator Premium < 7.9.0 - Unauthenticated Stored XSS
2023-03-20 00:00:00
prion
prion
Cross site scripting
2023-04-10 14:15:00
wpvulndb
wpvulndb
Stylish Cost Calculator Premium < 7.9.0 - Unauthenticated Stored XSS
2023-03-20 00:00:00
wordfence
wordfence