WordPress Blossom Recipe Maker plugin <= 1.0.7 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities

2022-09-0100:00:00

Ngo Van Thien (Alliance project)

patchstack.com

0.001 Low

EPSS

Percentile

22.9%

JSON

Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities were discovered by Ngo Van Thien (Patchstack Alliance) in the WordPress Blossom Recipe Maker plugin (versions <= 1.0.7).

Solution

Deactivate and delete. No reply from the vendor.

CPENameOperatorVersion
blossom recipe makerle1.0.7

CPE	Name	Operator	Version
	blossom recipe maker	le	1.0.7

0.001 Low

EPSS

Percentile

22.9%

JSON

Related for PATCHSTACK:1EEA9AC2E5A6E8AFB0A2773169B91798