5 matches found
CVE-2023-23982
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WPGear.Pro WPFrom Email plugin = 1.8.8 versions...
CVE-2023-23982
creationtimestamp| type| source ---|---|--- 2023-04-06 12:27:03+00:00| seen| https://t.me/cibsecurity/61531...
CVE-2023-23982
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WPGear.Pro WPFrom Email plugin = 1.8.8 versions...
CVE-2023-23982
The CVE-2023-23982 entry concerns the WPFrom Email plugin (WordPress) versions up to and including 1.8.8, where an authenticated admin+ Stored XSS vulnerability exists. The vulnerability affects the WPFrom Email component in WPGear.Pro branding and requires high-privilege authentication with user...
WordPress WPFrom Email Plugin <= 1.8.8 is vulnerable to Cross Site Scripting (XSS)
Software WPFrom Email Type Plugin Vulnerable versions = 1.8.8 Fixed in 1.8.9 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23982 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID c2654a74124b Credits Rio Darmawan Required...