4 matches found
CVE-2023-52125
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in webvitaly iframe allows Stored XSS.This issue affects iframe: from n/a through 4.8...
CVE-2023-52125
CVE-2023-52125 refers to a stored XSS vulnerability in the WordPress iframe plugin, exploitable via the iframe shortcode’s srcdoc handling. The issue is described as an authenticated Stored Cross-Site Scripting vulnerability (via srcdoc) affecting iframe users up to version 4.8, with a patch indi...
CVE-2023-52125 WordPress iFrame Plugin <= 4.8 is vulnerable to Cross Site Scripting (XSS)
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in webvitaly iframe allows Stored XSS.This issue affects iframe: from n/a through 4.8...
WordPress iFrame Plugin <= 4.8 is vulnerable to Cross Site Scripting (XSS)
Software iFrame Type Plugin Vulnerable versions = 4.8 Fixed in 4.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-52125 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID eecbc6285d96 Credits LVT-tholv2k Required privilege Contributor Publishe...