Lucene search
K

6 matches found

OSV
OSV
added 2023/06/22 3:15 p.m.5 views

CVE-2023-34170

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WP Overnight Quick/Bulk Order Form for WooCommerce plugin = 3.5.7 versions...

4.8CVSS7.3AI score0.00369EPSS
Exploits0References1
NVD
NVD
added 2023/06/22 3:15 p.m.21 views

CVE-2023-34170

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WP Overnight Quick/Bulk Order Form for WooCommerce plugin = 3.5.7 versions...

5.9CVSS5.4AI score0.00369EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/06/22 2:26 p.m.6 views

CVE-2023-34170 WordPress Quick/Bulk Order Form for WooCommerce Plugin <= 3.5.7 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WP Overnight Quick/Bulk Order Form for WooCommerce plugin = 3.5.7 versions...

5.9CVSS5.4AI score0.00369EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/22 2:26 p.m.29 views

CVE-2023-34170 WordPress Quick/Bulk Order Form for WooCommerce Plugin <= 3.5.7 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WP Overnight Quick/Bulk Order Form for WooCommerce plugin = 3.5.7 versions...

5.9CVSS5.6AI score0.00369EPSS
Exploits0References1
CVE
CVE
added 2023/06/22 2:26 p.m.44 views

CVE-2023-34170

CVE-2023-34170 : Stored XSS in the WordPress plugin “WP Overnight Quick/Bulk Order Form for WooCommerce” (versions up to 3.5.7). Root cause: insufficient sanitization/escaping of input parameters, enabling authenticated users (admin+) to inject script that can be stored and later reflected to sit...

5.9CVSS5.1AI score0.00369EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/05/30 12:0 a.m.22 views

WordPress Quick/Bulk Order Form for WooCommerce Plugin <= 3.5.7 is vulnerable to Cross Site Scripting (XSS)

Software Quick/Bulk Order Form for WooCommerce Type Plugin Vulnerable versions = 3.5.7 Fixed in 3.6.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-34170 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 2b935e525166 Credits...

5.9CVSS5.8AI score0.00369EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder