5 matches found
CVE-2023-23717
Auth. contributor+ Cross-Site Scripting XSS vulnerability in George Gecewicz Portfolio Slideshow plugin = 1.13.0 versions...
CVE-2023-23717
Auth. contributor+ Cross-Site Scripting XSS vulnerability in George Gecewicz Portfolio Slideshow plugin = 1.13.0 versions...
CVE-2023-23717
CVE-2023-23717 affects the WordPress plugin Portfolio Slideshow (George Gecewicz) up to version 1.13.0. It is a Cross-Site Scripting (XSS) vulnerability that can be triggered by users with contributor+ privileges; exploitation details are not provided in the documents, but Patchstack lists a low ...
CVE-2023-23717 WordPress Portfolio Slideshow Plugin <= 1.13.0 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Cross-Site Scripting XSS vulnerability in George Gecewicz Portfolio Slideshow plugin = 1.13.0 versions...
WordPress Portfolio Slideshow Plugin <= 1.13.0 is vulnerable to Cross Site Scripting (XSS)
Software Portfolio Slideshow Type Plugin Vulnerable versions = 1.13.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23717 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 06802f1d0214 Credits István Márton Requir...