CVE-2023-47226 WordPress Post Sliders & Post Grids Plugin <= 1.0.20 is vulnerable to Cross Site Scripting (XSS)

2023-11-0818:33:43

CWE-79

Patchstack

www.cve.org

wordpress

post sliders

post grids

xss

vulnerability

0.0004 Low

EPSS

Percentile

14.0%

JSON

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in I Thirteen Web Solution Post Sliders & Post Grids plugin <= 1.0.20 versions.

CNA Affected

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "post-slider-carousel",
    "product": "Post Sliders & Post Grids",
    "vendor": "I Thirteen Web Solution",
    "versions": [
      {
        "lessThanOrEqual": "1.0.20",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

References

patchstack.com/database/vulnerability/post-slider-carousel/wordpress-post-sliders-post-grids-plugin-1-0-20-cross-site-scripting-xss-vulnerability?_s_id=cve

0.0004 Low

EPSS

Percentile

14.0%

JSON

Related for CVELIST:CVE-2023-47226