Lucene search
PatchstackCVELIST:CVE-2023-31071HistoryAug 17, 2023 - 8:41 a.m.
CVE-2023-31071 WordPress Modal Dialog Plugin <= 3.5.14 is vulnerable to Cross Site Scripting (XSS)
2023-08-1708:41:21
CWE-79
Patchstack
www.cve.org
1
wordpress
modal dialog
3.5.14
xss
vulnerability
yannick lefebvre
CVSS3
7.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
27.9%
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Yannick Lefebvre Modal Dialog plugin <=Β 3.5.14 versions.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "modal-dialog",
"product": "Modal Dialog",
"vendor": "Yannick Lefebvre",
"versions": [
{
"changes": [
{
"at": "3.5.15",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.5.14",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
nvd
nvd
CVE-2023-31071
2023-08-17 09:15:12
prion
prion
Cross site scripting
2023-08-17 09:15:00
cve
cve
CVE-2023-31071
2023-08-17 09:15:12
wpvulndb
wpvulndb
Modal Dialog < 3.5.15 - Reflected XSS
2023-08-17 00:00:00
wordfence
wordfence
CVSS3
7.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
27.9%
Related for CVELIST:CVE-2023-31071