CVE-2023-5205

creationtimestamp| type| source ---|---|--- 2023-10-21 12:35:50+00:00| seen| https://t.me/cibsecurity/72728...

CVE-2023-5205

The Add Custom Body Class plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'addcustombodyclass' value in versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

CVE-2023-5205 Add Custom Body Class <= 1.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Add Custom Body Class plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'addcustombodyclass' value in versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

CVE-2023-5205

CVE-2023-5205 concerns the WordPress plugin Add Custom Body Class, affected &lt;= 1.4.1. The vulnerability is a stored Cross-Site Scripting (XSS) flaw caused by insufficient input sanitization and output escaping of the add_custom_body_class parameter, allowing authenticated users with contributo...

WordPress Add Custom Body Class Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Add Custom Body Class Type Plugin Vulnerable versions = 1.4.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5205 Patch priority Low CVSS severity Low 6.4 Developer Claim ownership PSID 55c282d5e4c0 Credits Francesco Carlucci...