2 matches found
CVE-2023-2168
CVE-2023-2168 – TaxoPress (WordPress plugin) is a stored cross-site scripting vulnerability in the Suggest Terms Title field, affecting TaxoPress versions up to 3.6.4. The issue arises from insufficient input sanitization and output escaping, enabling an authenticated attacker with Editor+ privil...
WordPress TaxoPress Plugin <= 3.6.4 is vulnerable to Cross Site Scripting (XSS)
Software TaxoPress Type Plugin Vulnerable versions = 3.6.4 Fixed in 3.6.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2168 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4652ac0b6b2c Credits Ivan Kuzymchak Required...