EUVD-2023-59166

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

WP Recipe Maker plugin for WordPress has Reflected Cross-Site Scripting vulnerability due to poor sanitization

Reporter	Title	Published	Views	Family All 14
Circl	CVE-2023-6970	18 Jan 202409:21	–	circl
CNNVD	WordPress Plugin WP Recipe Maker Security Vulnerability	18 Jan 202400:00	–	cnnvd
CVE	CVE-2023-6970	18 Jan 202407:30	–	cve
Cvelist	CVE-2023-6970 WP Recipe Maker <= 9.1.0 - Reflected Cross-Site Scripting via Referer	18 Jan 202407:30	–	cvelist
Nuclei	WP Recipe Maker <= 9.1.0 - Reflected XSS via Referer Header	12 Feb 202600:04	–	nuclei
NVD	CVE-2023-6970	18 Jan 202408:15	–	nvd
OSV	CVE-2023-6970	18 Jan 202408:15	–	osv
Patchstack	WordPress WP Recipe Maker Plugin <= 9.1.0 is vulnerable to Cross Site Scripting (XSS)	18 Jan 202400:00	–	patchstack
Prion	Cross site scripting	18 Jan 202408:15	–	prion
Positive Technologies	PT-2024-15151	18 Jan 202400:00	–	ptsecurity

[
  {
    "enisaIdVendor": [
      {
        "id": "a8fcc2b2-22f7-35bf-872e-45385fb06284",
        "vendor": {
          "name": "brechtvds"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "2f324d41-a59b-39ed-9d63-3fee7ca4f0da",
        "product": {
          "name": "WP Recipe Maker"
        },
        "product_version": "* ≤9.1.0"
      },
      {
        "id": "83a2e570-bcf9-3e58-879c-d3bc9564cfcc",
        "product": {
          "name": "WP Recipe Maker"
        }
      }
    ]
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/20842e95-4b91-4138-9e32-7c090724bf64
plugins	www.plugins.trac.wordpress.org/changeset/3019769/wp-recipe-maker/trunk/templates/public/print.php

03 Oct 2025 20:07Current

7High risk

Vulners AI Score7

CVSS 3.16.1

EPSS0.23036

SSVC