5 matches found
CVE-2023-6290
creationtimestamp| type| source ---|---|--- 2024-01-22 21:31:24+00:00| seen| https://t.me/ctinow/171442 2024-01-26 23:16:29+00:00| seen| https://t.me/ctinow/174528 2024-02-16 10:41:38+00:00| seen| https://t.me/ctinow/186249...
CVE-2023-6290
The SEOPress WordPress plugin before 7.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
CVE-2023-6290
The SEOPress WordPress plugin before 7.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
CVE-2023-6290
CVE-2023-6290 affects the SEOPress WordPress plugin (versions prior to 7.3). The Red Hat/NVD reports describe an issue where the plugin fails to sanitize and escape certain settings, enabling stored cross-site scripting by high-privilege users (e.g., admins) even when unfiltered_html is disallowe...
CVE-2023-6290 WP SEO Press < 7.3 - Admin+ Stored XSS
The SEOPress WordPress plugin before 7.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...