Lucene search

K
prionPRIOn knowledge basePRION:CVE-2023-28664
HistoryMar 22, 2023 - 9:15 p.m.

Cross site scripting

2023-03-2221:15:00
PRIOn knowledge base
www.prio-n.com
4
wordpress
plugin
cross-site scripting
vulnerability
authenticated user

0.001 Low

EPSS

Percentile

23.3%

The Meta Data and Taxonomies Filter WordPress plugin, in versions < 1.3.1, is affected by a reflected cross-site scripting vulnerability in the ‘tax_name’ parameter of the mdf_get_tax_options_in_widget action, which can only be triggered by an authenticated user.

0.001 Low

EPSS

Percentile

23.3%