5 matches found
CVE-2023-30745
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1 versions...
CVE-2023-30745
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1 versions...
CVE-2023-30745
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Phan Chuong IP Metaboxes plugin = 2.1.1 versions...
CVE-2023-30745
CVE-2023-30745 affects the WordPress plugin IP Metaboxes (Phan Chuong) ≤ 2.1.1. An authenticated admin+ can trigger a Stored XSS due to inadequate sanitization/escaping of settings, potentially affecting admin sessions and loaded pages. The connected documents provide limited detail on exploit st...
WordPress IP Metaboxes Plugin <= 2.1.1 is vulnerable to Cross Site Scripting (XSS)
Software IP Metaboxes Type Plugin Vulnerable versions = 2.1.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-30745 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 98c96aff12b7 Credits WON JOON HWANG Required...