CVE-2023-36688

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Michael Mann Simple Site Verify plugin = 1.0.7 versions...

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Michael Mann Simple Site Verify plugin = 1.0.7 versions...

CVE-2023-36688 WordPress Simple Site Verify Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Michael Mann Simple Site Verify plugin = 1.0.7 versions...

CVE-2023-36688

CVE-2023-36688 affects WordPress Simple Site Verify plugin (versions

Simple Site Verify < 1.0.8 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

PT-2023-25681 · Michael Mann · Simple Site Verify Plugin

Name of the Vulnerable Software and Affected Versions: Michael Mann Simple Site Verify plugin versions 1.0.7 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. Recommendations: For versions 1.0.7 an...

WordPress Plugin Simple Site Verify Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

WordPress Simple Site Verify Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software Simple Site Verify Type Plugin Vulnerable versions = 1.0.7 Fixed in 1.0.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-36688 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID e9430062ea26 Credits yuyudhn Required...