Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:54 a.m.4 views

CVE-2023-1546

The MyCryptoCheckout WordPress plugin before 2.124 does not escape some URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting...

6.1CVSS6.7AI score0.0085EPSS
Exploits1References1
NVD
NVD
added 2023/05/02 8:15 a.m.19 views

CVE-2023-1546

The MyCryptoCheckout WordPress plugin before 2.124 does not escape some URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting...

6.1CVSS6.1AI score0.0085EPSS
Exploits1References1
CVE
CVE
added 2023/05/02 7:5 a.m.87 views

CVE-2023-1546

CVE-2023-1546 affects the WordPress plugin MyCryptoCheckout prior to version 2.124. The issue is a Reflected Cross-Site Scripting caused by not escaping certain URLs output in HTML attributes. The NVD entry and the Nuclei template confirm this cross-site scripting flaw, with a CVSS v3.1 base scor...

6.1CVSS6.2AI score0.0085EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/02 7:5 a.m.12 views

CVE-2023-1546 MyCryptoCheckout < 2.124 - Reflected XSS

The MyCryptoCheckout WordPress plugin before 2.124 does not escape some URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting...

6AI score0.0085EPSS
Exploits1References1
Patchstack
Patchstack
added 2023/04/14 12:0 a.m.11 views

WordPress MyCryptoCheckout Plugin < 2.124 is vulnerable to Cross Site Scripting (XSS)

Software MyCryptoCheckout Type Plugin Vulnerable versions 2.124 Fixed in 2.124 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1546 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b58e27663e61 Credits Pablo Sanchez Required...

6.1CVSS5.9AI score0.0085EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder