Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:24 a.m.6 views

CVE-2023-52178

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MojofyWP WP Affiliate Disclosure allows Stored XSS.This issue affects WP Affiliate Disclosure: from n/a through 1.2.7...

6.5CVSS6.7AI score0.0031EPSS
Exploits0References1
Circl
Circl
added 2024/01/05 9:21 a.m.5 views

CVE-2023-52178

creationtimestamp| type| source ---|---|--- 2024-01-05 09:21:51+00:00| seen| https://t.me/ctinow/163437 2024-01-24 09:41:37+00:00| seen| https://t.me/ctinow/172616...

6.5CVSS6.7AI score0.0031EPSS
Exploits0References2
CVE
CVE
added 2024/01/05 7:51 a.m.45 views

CVE-2023-52178

CVE-2023-52178 affects the WP Affiliate Disclosure plugin for WordPress. Vulnerable in versions up to 1.2.7, it allows an authenticated Contributor+ to trigger a stored XSS via the $id parameter in the plugin’s stored content. Public references in the provided documents confirm the vulnerability ...

6.5CVSS6.7AI score0.0031EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/12/29 12:0 a.m.9 views

WordPress WP Affiliate Disclosure Plugin <= 1.2.7 is vulnerable to Cross Site Scripting (XSS)

Software WP Affiliate Disclosure Type Plugin Vulnerable versions = 1.2.7 Fixed in 1.2.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-52178 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 308ee33f0ea5 Credits resecured.io Required privileg...

6.5CVSS6.6AI score0.0031EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder