2 matches found
CVE-2023-0377
The CVE-2023-0377 entry concerns the Scriptless Social Sharing WordPress plugin prior to version 3.2.2. The vulnerability arises because the plugin does not validate and escape certain block options before outputting them in pages/posts where the block is embedded, enabling Stored Cross-Site Scri...
WordPress Scriptless Social Sharing Plugin < 3.2.2 is vulnerable to Cross Site Scripting (XSS)
Software Scriptless Social Sharing Type Plugin Vulnerable versions 3.2.2 Fixed in 3.2.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0377 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID ac2027e820d0 Credits Lana Codes...