Lucene search

K
patchstackRafie Muhammad (Patchstack)PATCHSTACK:2A5DB73D619784F8CF449B8C06AF9F38
HistoryJul 18, 2023 - 12:00 a.m.

WordPress WordPress Behance Plugin - Make a Portfolio, Feed, Gallery, Slider and More Plugin < 3.0.2 is vulnerable to Cross Site Scripting (XSS)

2023-07-1800:00:00
Rafie Muhammad (Patchstack)
patchstack.com
3
wordpress behance plugin
cross site scripting
vulnerability
injection
cve-2023-33999
patchstack
unauthenticated
mitigate
resolve

AI Score

6.8

Confidence

High

Software

WordPress Behance Plugin - Make a Portfolio, Feed, Gallery, Slider and More

Type

Plugin

Vulnerable versions

< 3.0.2

Fixed in

3.0.2

OWASP Top 10

A3: Injection

Classification

Cross Site Scripting (XSS)

CVE

CVE-2023-33999

Patch priority

Medium

CVSS severity

Medium (7.1)

Developer

Claim ownership

PSID

1ef2f1c6a11f

Credits

Rafie Muhammad Patchstack Rafie Muhammad (Patchstack)

Required privilege

Unauthenticated

Published

18 July, 2023

Patchstack.com

Remove and replace plugin Expand full details Have additional information or questions about this entry? Let us know.

Solution

We advise to mitigate or resolve the vulnerability immediately.

Affected configurations

Vulners
Node
gs_pluginswordpress_behance_plugin_-_make_a_portfolio\,_feed\,_gallery\,_slider_and_moreRange<3.0.2
VendorProductVersionCPE
gs_pluginswordpress_behance_plugin_-_make_a_portfolio\,_feed\,_gallery\,_slider_and_more*cpe:2.3:a:gs_plugins:wordpress_behance_plugin_-_make_a_portfolio\,_feed\,_gallery\,_slider_and_more:*:*:*:*:*:*:*:*

AI Score

6.8

Confidence

High

Related for PATCHSTACK:2A5DB73D619784F8CF449B8C06AF9F38