5 matches found
CVE-2023-1546
The MyCryptoCheckout WordPress plugin before 2.124 does not escape some URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting...
CVE-2023-1546
The MyCryptoCheckout WordPress plugin before 2.124 does not escape some URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting...
CVE-2023-1546
CVE-2023-1546 affects the WordPress plugin MyCryptoCheckout prior to version 2.124. The issue is a Reflected Cross-Site Scripting caused by not escaping certain URLs output in HTML attributes. The NVD entry and the Nuclei template confirm this cross-site scripting flaw, with a CVSS v3.1 base scor...
CVE-2023-1546 MyCryptoCheckout < 2.124 - Reflected XSS
The MyCryptoCheckout WordPress plugin before 2.124 does not escape some URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting...
WordPress MyCryptoCheckout Plugin < 2.124 is vulnerable to Cross Site Scripting (XSS)
Software MyCryptoCheckout Type Plugin Vulnerable versions 2.124 Fixed in 2.124 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1546 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b58e27663e61 Credits Pablo Sanchez Required...