2 matches found
CVE-2023-45010
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Alex MacArthur Complete Open Graph plugin = 3.4.5 versions...
CVE-2023-45010
CVE-2023-45010 – WordPress Complete Open Graph Plugin ≤ 3.4.5 is vulnerable to admin+ Stored XSS. Root cause: insufficient input validation/escaping in plugin parameters, enabling stored XSS. Multiple connected sources (NVD, Red Hat, WP/distro feeds) confirm the vulnerability and affected version...