8 matches found
WordPress Simple URLs Cross Site Scripting
Exploit Title: simple urls alertorigin...
Wordpress 'simple urls' Plugin < 115 - XSS
Exploit Title: simple urls alertorigin...
Exploit for CVE-2023-0099
CVE-2023-0099-exploit Exploit Title: simple urls 4. kno...
CVE-2023-0099
The Simple URLs WordPress plugin before 115 does not sanitise and escape some parameters before outputting them back in some pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2023-0099 Simple URLs < 115 - Multiple Reflected XSS
The Simple URLs WordPress plugin before 115 does not sanitise and escape some parameters before outputting them back in some pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2023-0099 Simple URLs < 115 - Multiple Reflected XSS
The Simple URLs WordPress plugin before 115 does not sanitise and escape some parameters before outputting them back in some pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2023-0099
CVE-2023-0099 impacts the Simple URLs WordPress plugin prior to 115, which does not sufficiently sanitise/escape certain parameters before echoing them, enabling Reflected Cross-Site Scripting. The vulnerability can affect high-privilege users (e.g., admins) by crafting malicious links; CVSS v3.1...
WordPress Simple URLs Plugin < 115 is vulnerable to Cross Site Scripting (XSS)
Software Simple URLs Type Plugin Vulnerable versions 115 Fixed in 115 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0099 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID a16ae2175ff6 Credits WPScan Required privilege...