Lucene search
K

4 matches found

patchstack
patchstack
added 2023/04/11 12:0 a.m.13 views

WordPress Stylish Cost Calculator Premium Plugin < 7.9.0 is vulnerable to Cross Site Scripting (XSS)

Software Stylish Cost Calculator Premium Type Plugin Vulnerable versions 7.9.0 Fixed in 7.9.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0983 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 344803b43355 Credits Flaviu...

6.1CVSS5.9AI score0.00458EPSS
Exploits2References3Affected Software1
cve
cve
added 2023/04/10 1:17 p.m.52 views

CVE-2023-0983

CVE-2023-0983 affects the WordPress plugin Stylish Cost Calculator Premium up to version 7.9.0. The vulnerability is an unauthenticated stored Cross-Site Scripting caused by insufficient sanitization/escaping of a parameter when outputting it on the Email Quote Form submission page, potentially e...

6.1CVSS6AI score0.00458EPSS
Exploits2References1Affected Software1
vulnrichment
vulnrichment
added 2023/04/10 1:17 p.m.10 views

CVE-2023-0983 Stylish Cost Calculator Premium < 7.9.0 - Unauthenticated Stored XSS

The stylish-cost-calculator-premium WordPress plugin before 7.9.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Stored Cross-Site Scripting which could be used against admins when viewing submissions submitted through the Email Quote Form...

6AI score0.00458EPSS
Exploits2References1
cvelist
cvelist
added 2023/04/10 1:17 p.m.62 views

CVE-2023-0983 Stylish Cost Calculator Premium < 7.9.0 - Unauthenticated Stored XSS

The stylish-cost-calculator-premium WordPress plugin before 7.9.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Stored Cross-Site Scripting which could be used against admins when viewing submissions submitted through the Email Quote Form...

6.1AI score0.00458EPSS
Exploits2References1
Rows per page
Query Builder