3 matches found
CVE-2023-3118
The Export All URLs WordPress plugin before 4.6 does not sanitise and escape a parameter before outputting them back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2023-3118
creationtimestamp| type| source ---|---|--- 2023-07-10 20:24:06+00:00| seen| https://t.me/cibsecurity/66263...
CVE-2023-3118
CVE-2023-3118 affects the WordPress plugin Export All URLs (pre-4.6). The vulnerability is a reflected XSS caused by insufficient sanitization/escaping of a parameter that is re-output on the page, potentially targeting admin/high-privilege users. The vulnerability has been publicly listed with a...