Lucene search

K
nvd[email protected]NVD:CVE-2023-41861
HistorySep 27, 2023 - 3:19 p.m.

CVE-2023-41861

2023-09-2715:19:30
CWE-79
web.nvd.nist.gov
3
xss
vulnerability
unauthenticated
restrict plugin

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

20.2%

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Restrict plugin <= 2.2.4 versions.

Affected configurations

Nvd
Node
tickerarestrictRange<2.2.5wordpress
VendorProductVersionCPE
tickerarestrict*cpe:2.3:a:tickera:restrict:*:*:*:*:*:wordpress:*:*

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

20.2%

Related for NVD:CVE-2023-41861