Lucene search
HistoryNov 13, 2023 - 5:15 a.m.
CVE-2023-46201
cross-site request forgery
csrf
jeff sherk auto login
stored xss
security vulnerability
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.0%
Cross-Site Request Forgery (CSRF) vulnerability in Jeff Sherk Auto Login New User After Registration allows Stored XSS.This issue affects Auto Login New User After Registration: from n/a through 1.9.6.
Affected configurations
Node
auto_login_new_user_after_registration_projectauto_login_new_user_after_registrationRange≤1.9.6wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| auto_login_new_user_after_registration_project | auto_login_new_user_after_registration | * | cpe:2.3:a:auto_login_new_user_after_registration_project:auto_login_new_user_after_registration:*:*:*:*:*:wordpress:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2023-11-13 05:15:00
wpvulndb
wpvulndb
Auto Login New User After Registration <= 1.9.6 - Stored XSS via CSRF
2023-11-15 00:00:00
cvelist
cvelist
cve
cve
CVE-2023-46201
2023-11-13 05:15:08
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.0%
Related for NVD:CVE-2023-46201