Lucene search
K

4 matches found

Circl
Circl
added 2025/03/21 8:25 p.m.6 views

CVE-2023-0061

creationtimestamp| type| source ---|---|--- 2025-03-21 20:25:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8438...

6.8CVSS5.5AI score0.00635EPSS
Exploits2References1
CVE
CVE
added 2023/02/13 2:32 p.m.67 views

CVE-2023-0061

Summary: CVE-2023-0061 affects the Judge.me Product Reviews for WooCommerce WordPress plugin prior to 1.3.21, where certain shortcode attributes are not properly validated/escaped before being echoed in the page, enabling Stored XSS for users with the contributor role or higher. Affected software...

6.8CVSS5.3AI score0.00635EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2023/02/13 2:32 p.m.27 views

CVE-2023-0061 Judge.me Product Reviews for WooCommerce < 1.3.21 - Contributor+ Stored XSS

The Judge.me Product Reviews for WooCommerce WordPress plugin before 1.3.21 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Si...

5.6AI score0.00635EPSS
Exploits2References1
Patchstack
Patchstack
added 2023/01/17 12:0 a.m.13 views

WordPress Judge.me Product Reviews for WooCommerce Plugin < 1.3.21 is vulnerable to Cross Site Scripting (XSS)

Software Judge.me Product Reviews for WooCommerce Type Plugin Vulnerable versions 1.3.21 Fixed in 1.3.21 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0061 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 7fda1dafd296...

6.8CVSS5.7AI score0.00635EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder