3 matches found
CVE-2023-23738
Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in Brainstorm Force Spectra allows Content Spoofing, Phishing.This issue affects Spectra: from n/a through 2.3.0...
CVE-2023-23738
CVE-2023-23738 affects the WordPress Spectra integration in the Ultimate Addons for Gutenberg plugin (Spectra blocks) up to version 2.3.0. The issue is an Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) that enables unauthenticated email spoofing/C...
WordPress Spectra Plugin <= 2.3.0 is vulnerable to Content Spoofing
Software Spectra Type Plugin Vulnerable versions = 2.3.0 Fixed in 2.3.1 OWASP Top 10 A1: Injection Classification Content Spoofing CVE CVE-2023-23738 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 03ab7b057204 Credits Dave Jong Patchstack Required privilege Unauthenticate...