5 matches found
CVE-2023-0733
The Newsletter Popup WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks...
CVE-2023-0733 Newsletter Popup <= 1.2 - Unauthenticated Stored XSS
The Newsletter Popup WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks...
CVE-2023-0733 Newsletter Popup <= 1.2 - Unauthenticated Stored XSS
The Newsletter Popup WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks...
CVE-2023-0733
CVE-2023-0733 affects the Newsletter Popup WordPress plugin (versions
WordPress Newsletter Popup Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS)
Software Newsletter Popup Type Plugin Vulnerable versions = 1.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0733 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 3312adcb21e4 Credits Lana Codes Required...