Lucene search
HistoryJun 26, 2023 - 8:15 a.m.
CVE-2023-29423
cve-2023-29423
authentication
stored cross-site scripting
pi websolution
cancel order
return order
repeat order
reorder
woocommerce
vulnerability
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.0005 Low
EPSS
Percentile
16.2%
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in PI Websolution Cancel order request / Return order / Repeat Order / Reorder for WooCommerce plugin <= 1.3.2 versions.
Affected configurations
Node
piwebsolutioncancel_order_request_\/_return_order_\/_repeat_order_\/_reorder_for_woocommerceRange≤1.3.2wordpress
Related
prion
prion
Cross site scripting
2023-06-26 08:15:00
cvelist
cvelist
cve
cve
CVE-2023-29423
2023-06-26 08:15:09
wpvulndb
wpvulndb
Cancel order request WooCommerce < 1.3.3 - Admin+ Stored XSS
2023-06-26 00:00:00
wordfence
wordfence
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.0005 Low
EPSS
Percentile
16.2%
Related for NVD:CVE-2023-29423