Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:53 a.m.9 views

CVE-2023-0043

The Custom Add User WordPress plugin through 2.0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6.1AI score0.00481EPSS
Exploits1References1
Circl
Circl
added 2025/03/11 4:41 a.m.8 views

CVE-2023-0043

creationtimestamp| type| source ---|---|--- 2025-03-11 04:41:13+00:00| seen| Telegram/Gqimi7zpW9Dk0loUmM7iCRL8nMQrS32mFGQOMZ8IVMkgExE9...

6.1CVSS4.8AI score0.00481EPSS
Exploits1
Patchstack
Patchstack
added 2023/02/28 12:0 a.m.8 views

WordPress Custom Add User Plugin <= 2.0.2 is vulnerable to Cross Site Scripting (XSS)

Software Custom Add User Type Plugin Vulnerable versions = 2.0.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0043 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID c948921589af Credits Shreya Pohekar Required...

6.1CVSS5.9AI score0.00481EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/27 3:24 p.m.7 views

CVE-2023-0043 Custom Add User <= 2.0.2 - Reflected Cross-Site Scripting

The Custom Add User WordPress plugin through 2.0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.2AI score0.00481EPSS
Exploits1References1
CVE
CVE
added 2023/02/27 3:24 p.m.62 views

CVE-2023-0043

CVE-2023-0043 affects the WordPress plugin Custom Add User (

6.1CVSS6AI score0.00481EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder