Lucene search
WPScanCVELIST:CVE-2023-2023HistoryMay 30, 2023 - 7:49 a.m.
CVE-2023-2023 Custom 404 Pro < 3.7.3 - Reflected Cross-Site Scripting
2023-05-3007:49:21
WPScan
www.cve.org
wordpress
plugin
vulnerability
cross-site scripting
0.005 Low
EPSS
Percentile
76.5%
The Custom 404 Pro WordPress plugin before 3.7.3 does not escape some URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting.
CNA Affected
[
{
"vendor": "Unknown",
"product": "Custom 404 Pro",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "3.7.3"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
prion
prion
Cross site scripting
2023-05-30 08:15:00
githubexploit
githubexploit
Exploit for Cross-site Scripting in Kunalnagar Custom 404 Pro
2023-08-13 05:54:17
Exploit for Cross-site Scripting in Kunalnagar Custom 404 Pro
2024-02-15 16:35:59
Exploit for Cross-site Scripting in Kunalnagar Custom 404 Pro
2021-11-22 12:57:22
nvd
nvd
CVE-2023-2023
2023-05-30 08:15:09
cve
cve
CVE-2023-2023
2023-05-30 08:15:09
nuclei
nuclei
Custom 404 Pro < 3.7.3 - Cross-Site Scripting
2023-07-07 09:38:49
nessus
nessus
wordfence
wordfence