2 matches found
CVE-2023-0168
CVE-2023-0168 affects the Olevmedia Shortcodes WordPress plugin ≤ 1.1.9. The root cause is the plugin’s failure to validate and escape some shortcode attributes before output, enabling Stored XSS for users with the contributor role or higher when shortcodes are embedded in pages/posts. Several co...
WordPress Olevmedia Shortcodes Plugin <= 1.1.9 is vulnerable to Cross Site Scripting (XSS)
Software Olevmedia Shortcodes Type Plugin Vulnerable versions = 1.1.9 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0168 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 576499d3655f Credits István Márton...