2 matches found
CVE-2023-1917
CVE-2023-1917 — PowerPress for WordPress : A Stored Cross-Site Scripting (XSS) vulnerability exists in PowerPress versions up to and including 10.0, caused by insufficient input sanitization and output escaping in the shortcode handling (powerpress_shortcode_handler) and related options. Authenti...
WordPress PowerPress Podcasting Plugin <= 10.0 is vulnerable to Cross Site Scripting (XSS)
Software PowerPress Podcasting Type Plugin Vulnerable versions = 10.0 Fixed in 10.0.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1917 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 2e844f252ce9 Credits Alex Thomas...