4 matches found
CVE-2023-0061
creationtimestamp| type| source ---|---|--- 2025-03-21 20:25:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8438...
CVE-2023-0061
Summary: CVE-2023-0061 affects the Judge.me Product Reviews for WooCommerce WordPress plugin prior to 1.3.21, where certain shortcode attributes are not properly validated/escaped before being echoed in the page, enabling Stored XSS for users with the contributor role or higher. Affected software...
CVE-2023-0061 Judge.me Product Reviews for WooCommerce < 1.3.21 - Contributor+ Stored XSS
The Judge.me Product Reviews for WooCommerce WordPress plugin before 1.3.21 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Si...
WordPress Judge.me Product Reviews for WooCommerce Plugin < 1.3.21 is vulnerable to Cross Site Scripting (XSS)
Software Judge.me Product Reviews for WooCommerce Type Plugin Vulnerable versions 1.3.21 Fixed in 1.3.21 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0061 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 7fda1dafd296...