CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

WP Helper Lite < 4.3 - Cross-Site Scripting

The WP Helper Lite WordPress plugin, in versions 4.3, returns all GET parameters unsanitized in the response, resulting in a reflected cross-site scripting vulnerability. id: CVE-2023-0448 info: name: WP Helper Lite 4.3 - Cross-Site Scripting author: ritikchaddha severity: medium description: | T...

6.1CVSS6AI score0.27667EPSS

Exploits2References4

ATTACKERKB•added 2023/11/09 6:15 p.m.•1 views

CVE-2023-46614

A vulnerability in Mat Bao Corporation WP Helper Premium wp-helper-lite.This issue affects WP Helper Premium: from n/a through = 4.5.1...

8.8CVSS8.5AI score0.00053EPSS

Exploits0References3

OSV•added 2023/01/26 9:18 p.m.•2 views

CVE-2023-0448

The WP Helper Lite WordPress plugin, in versions 4.3, returns all GET parameters unsanitized in the response, resulting in a reflected cross-site scripting vulnerability...

6.1CVSS6.3AI score0.27667EPSS

Exploits2References1

Prion•added 2023/01/26 9:18 p.m.•8 views

Cross site scripting

The WP Helper Lite WordPress plugin, in versions 4.3, returns all GET parameters unsanitized in the response, resulting in a reflected cross-site scripting vulnerability...

5.8CVSS5.9AI score0.27667EPSS

Exploits2References1Affected Software1

CNNVD•added 2023/01/26 12:0 a.m.•1 views

WordPress plugin WP Helper Lite 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.1CVSS5.6AI score0.27667EPSS

Exploits2References2

CVE•added 2023/01/24 12:0 a.m.•69 views

CVE-2023-0448

The CVE-2023-0448 entry concerns the WordPress WP Helper Lite plugin, affected versions prior to 4.3. The issue arises because the plugin returns all GET parameters unsanitized in responses, enabling a reflected cross-site scripting (XSS) vulnerability. Practical impact described across sources i...

6.1CVSS5.9AI score0.27667EPSS

Exploits2References1Affected Software1

Vulnrichment•added 2023/01/24 12:0 a.m.•3 views

CVE-2023-0448

The WP Helper Lite WordPress plugin, in versions 4.3, returns all GET parameters unsanitized in the response, resulting in a reflected cross-site scripting vulnerability...

6.4AI score0.27667EPSS

Exploits2References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by