Lucene search
PRIOn knowledge basePRION:CVE-2023-3292HistoryJul 31, 2023 - 10:15 a.m.
Cross site scripting
2023-07-3110:15:00
PRIOn knowledge base
www.prio-n.com
2
grid kit premium
wordpress
plugin
cross-site scripting
reflected
high privilege users
0.0005 Low
EPSS
Percentile
17.1%
The grid-kit-premium WordPress plugin before 2.2.0 does not escape some parameters as well as generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin
| CPE | Name | Operator | Version |
|---|---|---|---|
| portfolio_gallery\\,_product_catalog_-_grid_kit_portfolio | lt | 2.2.0 |
Related
wpexploit
wpexploit
Grid Kit Premium < 2.2.0 - Multiple Reflected Cross-Site Scripting
2023-07-10 00:00:00
cvelist
cvelist
wpvulndb
wpvulndb
Grid Kit Premium < 2.2.0 - Multiple Reflected Cross-Site Scripting
2023-07-10 00:00:00
cve
cve
CVE-2023-3292
2023-07-31 10:15:10
nvd
nvd
CVE-2023-3292
2023-07-31 10:15:10
openvas
openvas
Tenable Nessus Agent Multiple Vulnerabilities (TNS-2024-09)
2024-05-21 00:00:00
wordfence
wordfence