Lucene search
TenableCVELIST:CVE-2023-28664HistoryMar 22, 2023 - 12:00 a.m.
CVE-2023-28664
2023-03-2200:00:00
tenable
www.cve.org
wordpress
plugin
vulnerability
tax_name
parameter
authenticated user
0.001 Low
EPSS
Percentile
23.3%
The Meta Data and Taxonomies Filter WordPress plugin, in versions < 1.3.1, is affected by a reflected cross-site scripting vulnerability in the ‘tax_name’ parameter of the mdf_get_tax_options_in_widget action, which can only be triggered by an authenticated user.
CNA Affected
[
{
"vendor": "n/a",
"product": "Meta Data and Taxonomies Filter WordPress Plugin",
"versions": [
{
"version": "< 1.3.1",
"status": "affected"
}
]
}
]Related
wpvulndb
wpvulndb
MDTF < 1.3.1 - Reflected XSS
2023-03-22 00:00:00
nvd
nvd
CVE-2023-28664
2023-03-22 21:15:19
wpexploit
wpexploit
MDTF < 1.3.1 - Reflected XSS
2023-03-22 00:00:00
prion
prion
Cross site scripting
2023-03-22 21:15:00
cve
cve
CVE-2023-28664
2023-03-22 21:15:19
openvas
openvas
WordPress Meta Data and Taxonomies Filter Plugin < 1.3.1 XSS Vulnerability
2023-08-29 00:00:00
wordfence
wordfence