3 matches found
CVE-2023-47521
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Max Bond, AndreSC Q2W3 Post Order allows Reflected XSS.This issue affects Q2W3 Post Order: from n/a through 1.2.8...
CVE-2023-47521 WordPress Q2W3 Post Order Plugin <= 1.2.8 is vulnerable to Cross Site Scripting (XSS)
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Max Bond, AndreSC Q2W3 Post Order allows Reflected XSS.This issue affects Q2W3 Post Order: from n/a through 1.2.8...
CVE-2023-47521
CVE-2023-47521 affects the WordPress Q2W3 Post Order plugin up to version 1.2.8. It is a Reflected XSS caused by improper input neutralization during web page generation, permitting unauthenticated injection of scripts via crafted requests. Public sources indicate the vulnerability remains unpatc...