Lucene search
HistoryNov 06, 2023 - 10:15 a.m.
CVE-2023-47182
cross-site request forgery
stored cross-site scripting
nazmul hossain nihal
login screen manager plugin
cve-2023-47182
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.2%
Cross-Site Request Forgery (CSRF) leading to a Stored Cross-Site Scripting (XSS) vulnerability in Nazmul Hossain Nihal Login Screen Manager plugin <= 3.5.2 versions.
Affected configurations
Node
nazmulhossainnihallogin_screen_managerRange≤3.5.2wordpress
Related
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2023-11-06 10:15:00
cve
cve
CVE-2023-47182
2023-11-06 10:15:08
wpvulndb
wpvulndb
Login Screen Manager <= 3.5.2 - Stored XSS via CSRF
2023-11-17 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.2%
Related for NVD:CVE-2023-47182