Lucene search
K

5 matches found

Patchstack
Patchstack
added 2023/06/22 12:0 a.m.14 views

WordPress Go Pricing Plugin < 3.4 is vulnerable to Cross Site Scripting (XSS)

Software Go Pricing Type Plugin Vulnerable versions 3.4 Fixed in 3.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2498 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 27531616264d Credits Lana Codes Required privilege...

6.4CVSS5.6AI score0.00365EPSS
Exploits0References2Affected Software1
Circl
Circl
added 2023/05/24 7:26 a.m.11 views

CVE-2023-2498

creationtimestamp| type| source ---|---|--- 2023-05-24 07:26:46+00:00| seen| https://t.me/cibsecurity/64666...

6.4CVSS6.7AI score0.00365EPSS
Exploits0References1
NVD
NVD
added 2023/05/24 12:15 a.m.32 views

CVE-2023-2498

The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 3.3.19 due to insufficient input sanitization and output escaping. This makes it possible for contributor-level attackers to inje...

6.4CVSS5.8AI score0.00365EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/05/23 11:36 p.m.14 views

CVE-2023-2498 Go Pricing - WordPress Responsive Pricing Tables <= 3.3.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 3.3.19 due to insufficient input sanitization and output escaping. This makes it possible for contributor-level attackers to inje...

6.4CVSS6.8AI score0.00365EPSS
Exploits0References2
CVE
CVE
added 2023/05/23 11:36 p.m.64 views

CVE-2023-2498

CVE-2023-2498 affects the Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress. A stored XSS via shortcodes exists in versions up to and including 3.3.19 due to insufficient input sanitization and output escaping, enabling contributed-level attackers to inject scripts on pages vi...

6.4CVSS5.3AI score0.00365EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder