Lucene search
PRIOn knowledge basePRION:CVE-2023-0983HistoryApr 10, 2023 - 2:15 p.m.
Cross site scripting
2023-04-1014:15:00
PRIOn knowledge base
www.prio-n.com
10
cross site scripting
wordpress
stored xss
email quote form
security vulnerability
0.001 Low
EPSS
Percentile
29.8%
The stylish-cost-calculator-premium WordPress plugin before 7.9.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Stored Cross-Site Scripting which could be used against admins when viewing submissions submitted through the Email Quote Form.
| CPE | Name | Operator | Version |
|---|---|---|---|
| stylish_cost_calculator | le | 7.4.1 |
Related
nvd
nvd
CVE-2023-0983
2023-04-10 14:15:08
cvelist
cvelist
cve
cve
CVE-2023-0983
2023-04-10 14:15:08
wpexploit
wpexploit
Stylish Cost Calculator Premium < 7.9.0 - Unauthenticated Stored XSS
2023-03-20 00:00:00
wpvulndb
wpvulndb
Stylish Cost Calculator Premium < 7.9.0 - Unauthenticated Stored XSS
2023-03-20 00:00:00
wordfence
wordfence