2 matches found
CVE-2023-0295
CVE-2023-0295 – WordPress Launchpad plugin : A stored XSS exists in Launchpad versions up to 1.0.13 due to insufficient input sanitization and output escaping in several settings parameters. An authenticated attacker with administrator-level permissions (and in multisite deployments where unfilte...
WordPress Launchpad – Coming Soon & Maintenance Mode Plugin Plugin <= 1.0.13 is vulnerable to Cross Site Scripting (XSS)
Software Launchpad – Coming Soon & Maintenance Mode Plugin Type Plugin Vulnerable versions = 1.0.13 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0295 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 1b5adaa47d4c...