Lucene search
GoogleOSV:BIT-2023-5561HistoryOct 23, 2023 - 6:29 a.m.
BIT-2023-5561
2023-10-2306:29:47
Google
osv.dev
27
popup builder
wordpress
stored cross-site scripting
0.001 Low
EPSS
Percentile
26.9%
The Popup Builder WordPress plugin through 4.1.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
Related
githubexploit
githubexploit
Exploit for Vulnerability in Wordpress
2023-11-26 03:47:33
Exploit for CVE-2023-5561
2023-12-13 16:43:18
osv
osv
BIT-wordpress-2023-5561
2024-03-06 11:08:48
BIT-wordpress-multisite-2023-5561
2024-03-06 11:08:24
CVE-2023-5561
2023-10-16 20:15:18
veracode
veracode
Information Disclosure
2023-11-12 06:43:12
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2023-5561
2023-10-16 00:00:00
prion
prion
Code injection
2023-10-16 20:15:00
nvd
nvd
CVE-2023-5561
2023-10-16 20:15:18
wpvulndb
wpvulndb
WP < 6.3.2 - Unauthenticated Post Author Email Disclosure
2023-10-13 00:00:00
cve
cve
CVE-2023-5561
2023-10-16 20:15:18
wpexploit
wpexploit
WP < 6.3.2 - Unauthenticated Post Author Email Disclosure
2023-10-13 00:00:00
debiancve
debiancve
CVE-2023-5561
2023-10-16 20:15:18
nessus
nessus
Debian DLA-3658-1 : wordpress - LTS security update
2023-11-20 00:00:00
WordPress 6.0 < 6.3.2 Multiple Vulnerabilities
2023-10-12 00:00:00
Debian dsa-5685 : wordpress - security update
2024-05-09 00:00:00
debian
debian
[SECURITY] [DLA 3658-1] wordpress security update
2023-11-20 21:26:30
[SECURITY] [DSA 5685-1] wordpress security update
2024-05-08 22:06:13
openvas
openvas
Debian: Security Advisory (DLA-3658-1)
2023-11-21 00:00:00
WordPress Multiple Vulnerabilities (Oct 2023) - Windows
2023-10-13 00:00:00
WordPress Multiple Vulnerabilities (Oct 2023) - Linux
2023-10-13 00:00:00
wordfence
wordfence