5 matches found
CVE-2023-37977
Unauth. Reflected Cross-Site Scripting XSS vulnerability in WPFunnels Team Drag & Drop Sales Funnel Builder for WordPress – WPFunnels plugin = 2.7.16 versions...
CVE-2023-37977
Unauth. Reflected Cross-Site Scripting XSS vulnerability in WPFunnels Team Drag & Drop Sales Funnel Builder for WordPress – WPFunnels plugin = 2.7.16 versions...
CVE-2023-37977 WordPress WPFunnels Plugin <= 2.7.16 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in WPFunnels Team Drag & Drop Sales Funnel Builder for WordPress – WPFunnels plugin = 2.7.16 versions...
CVE-2023-37977
CVE-2023-37977 affects the WordPress plugin “WPFunnels – Drag & Drop Sales Funnel Builder” up to version 2.7.16. It is an unauthenticated, reflected cross-site scripting (XSS) vulnerability (root cause: insufficient input escaping in reflected parameters). Impact stated by sources includes potent...
WordPress WPFunnels Plugin <= 2.7.16 is vulnerable to Cross Site Scripting (XSS)
Software WPFunnels Type Plugin Vulnerable versions = 2.7.16 Fixed in 2.7.17 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-37977 Patch priority Medium CVSS severity Medium 7.1 Developer WPFunnels Team PSID 5b27642361cb Credits LEE SE HYOUNG hackintoanetwork Requir...