Lucene search
PRIOn knowledge basePRION:CVE-2023-0424HistoryApr 24, 2023 - 7:15 p.m.
Cross site scripting
2023-04-2419:15:00
PRIOn knowledge base
www.prio-n.com
4
ms-reviews
wordpress
plugin
vulnerability
stored cross-site scripting
user reviews}
.
0.001 Low
EPSS
Percentile
23.7%
The MS-Reviews WordPress plugin through 1.5 does not sanitise and escape reviews, which could allow users any authenticated users, such as Subscribers to perform Stored Cross-Site Scripting attacks
| CPE | Name | Operator | Version |
|---|---|---|---|
| ms-reviews | le | 1.5 |
Related
cve
cve
CVE-2023-0424
2023-04-24 19:15:08
wpvulndb
wpvulndb
MS-Reviews <= 1.5 - Subscriber+ Stored XSS
2023-03-28 00:00:00
cvelist
cvelist
CVE-2023-0424 MS-Reviews <= 1.5 - Subscriber+ Stored XSS
2023-04-24 18:30:57
nvd
nvd
CVE-2023-0424
2023-04-24 19:15:08
wpexploit
wpexploit
MS-Reviews <= 1.5 - Subscriber+ Stored XSS
2023-03-28 00:00:00
wordfence
wordfence