Lucene search

CVE-2023-6844 iframe <= 5.0 - Authenticated(Contributor+) Stored Cross-Site Scripting via shortcode

🗓️ 23 May 2024 01:19:56Reported by WordfenceType

WordPress iframe plugin v5.0 XSS vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
NVD	CVE-2023-6844	23 May 202402:15	–	nvd
Vulnrichment	CVE-2023-6844 iframe <= 5.0 - Authenticated(Contributor+) Stored Cross-Site Scripting via shortcode	23 May 202401:56	–	vulnrichment
CVE	CVE-2023-6844	23 May 202402:15	–	cve
WPVulnDB	iframe < 5.1 - Authenticated(Contributor+) Stored Cross-Site Scripting via shortcode	22 May 202400:00	–	wpvulndb
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (May 20, 2024 to May 26, 2024)	30 May 202415:23	–	wordfence

[
  {
    "vendor": "webvitaly",
    "product": "iframe",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "5.0",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/browser/iframe/trunk/iframe.php
plugins	www.plugins.trac.wordpress.org/changeset
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/c16e16dc-8888-4222-862f-a57a9f14e7f4
plugins	www.plugins.trac.wordpress.org/browser/iframe/trunk/iframe.php

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 May 2024 01:56Current

5Medium risk

Vulners AI Score5

CVSS35

EPSS0.00123