CVE-2023-4805

🗓️ 16 Oct 2023 20:16:15Reported by GoogleType

osv🔗 osv.dev👁 10 Views

The Tutor LMS WordPress plugin is vulnerable to Stored Cross-Site Scripting attacks due to unsanitised setting

Reporter	Title	Published	Views	Family All 7
Patchstack	WordPress Tutor LMS Plugin < 2.3.0 is vulnerable to Cross Site Scripting (XSS)	17 Oct 202300:00	–	patchstack
Prion	Cross site scripting	16 Oct 202320:15	–	prion
wpexploit	Tutor LMS < 2.3.0 - Subscriber+ Stored Cross-Site Scripting	25 Sep 202300:00	–	wpexploit
WPVulnDB	Tutor LMS < 2.3.0 - Subscriber+ Stored Cross-Site Scripting	25 Sep 202300:00	–	wpvulndb
CVE	CVE-2023-4805	16 Oct 202320:15	–	cve
Cvelist	CVE-2023-4805 Tutor LMS < 2.3.0 - Subscriber+ Stored Cross-Site Scripting	16 Oct 202319:39	–	cvelist
NVD	CVE-2023-4805	16 Oct 202320:15	–	nvd

Source	Link
wpscan	www.wpscan.com/vulnerability/1049e940-49b1-4236-bea2-c636f35c5647

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Oct 2023 20:15Current

5.9Medium risk

Vulners AI Score5.9

CVSS35.4

EPSS0.00153