CVE-2023-47177 WordPress Linker Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

2023-11-0609:46:14

CWE-79

Patchstack

www.cve.org

wordpress

linker plugin

xss

vulnerability

admin+

stored

cross-site scripting

yakir sitbon

ariel klikstein

1.2.1

0.0004 Low

EPSS

Percentile

14.2%

JSON

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Yakir Sitbon, Ariel Klikstein Linker plugin <= 1.2.1 versions.

CNA Affected

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "linker",
    "product": "Linker",
    "vendor": "Yakir Sitbon, Ariel Klikstein",
    "versions": [
      {
        "lessThanOrEqual": "1.2.1",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]