Lucene search
K

5 matches found

Patchstack
Patchstack
added 2024/02/26 12:0 a.m.12 views

WordPress Socialdriver Theme < 2024 is vulnerable to Cross Site Scripting (XSS)

Software Socialdriver Type Theme Vulnerable versions 2024 Fixed in 2024 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-4826 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6b8a90a1f910 Credits longxi Required privilege Unauthenticated...

6.1CVSS6.6AI score0.00354EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/02/23 10:15 a.m.9 views

CVE-2023-4826

The SocialDriver WordPress theme before version 2024 has a prototype pollution vulnerability that could allow an attacker to inject arbitrary properties resulting in a cross-site scripting XSS attack...

6.1CVSS5.7AI score0.00354EPSS
Exploits0References2
OSV
OSV
added 2024/02/23 10:15 a.m.4 views

CVE-2023-4826

The SocialDriver WordPress theme before version 2024 has a prototype pollution vulnerability that could allow an attacker to inject arbitrary properties resulting in a cross-site scripting XSS attack...

6.1CVSS5.8AI score0.00354EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/02/23 9:14 a.m.13 views

CVE-2023-4826 Socialdriver < 2024 - Prototype Pollution to XSS

The SocialDriver WordPress theme before version 2024 has a prototype pollution vulnerability that could allow an attacker to inject arbitrary properties resulting in a cross-site scripting XSS attack...

5.9AI score0.00354EPSS
Exploits0References2
CVE
CVE
added 2024/02/23 9:14 a.m.5862 views

CVE-2023-4826

The vulnerability CVE-2023-4826 affects the SocialDriver WordPress theme, specifically versions prior to 2024. It is a prototype pollution issue that could allow an attacker to inject arbitrary properties, leading to cross-site scripting (XSS). The root cause is a pollution of object properties i...

6.1CVSS6AI score0.00354EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder