3 matches found
CVE-2023-25713 WordPress Quick Paypal Payments Plugin <= 5.7.25 is vulnerable to Cross Site Scripting (XSS)
Unauth. Stored Cross-Site Scripting XSS vulnerability in Fullworks Quick Paypal Payments plugin = 5.7.25 versions...
CVE-2023-25713
CVE-2023-25713 affects the WordPress plugin Quick Paypal Payments (Fullworks) up to version 5.7.25, with an unauthenticated Stored XSS vulnerability arising from insufficient input sanitization/escaping. Impact described in connected sources includes cross-site scripting exposure to unauthenticat...
WordPress Quick Paypal Payments Plugin <= 5.7.25 is vulnerable to Cross Site Scripting (XSS)
Software Quick Paypal Payments Type Plugin Vulnerable versions = 5.7.25 Fixed in 5.7.26 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25713 Patch priority Medium CVSS severity Medium 7.1 Developer Fullworks Plugins PSID 00ac17af9698 Credits yuyudhn...