Lucene search
HistoryMay 06, 2023 - 11:15 p.m.
CVE-2023-25491
cve-2023-25491
cross-site scripting
samuel marshall jch optimize
CVSS3
4.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.5%
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerabilityΒ in Samuel Marshall JCH Optimize plugin <=Β 3.2.2 versions.
Affected configurations
Node
jch_optimize_projectjch_optimizeRange<3.2.3wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| jch_optimize_project | jch_optimize | * | cpe:2.3:a:jch_optimize_project:jch_optimize:*:*:*:*:*:wordpress:*:* |
Related
prion
prion
Cross site scripting
2023-05-06 23:15:00
cve
cve
CVE-2023-25491
2023-05-06 23:15:09
vulnrichment
vulnrichment
wpvulndb
wpvulndb
JCH Optimize < 3.2.3 - Admin+ Stored XSS
2023-03-02 00:00:00
cvelist
cvelist
wordfence
wordfence
CVSS3
4.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.5%
Related for NVD:CVE-2023-25491