3 matches found
CVE-2023-25784
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Bon Plan Gratos Sticky Ad Bar plugin = 1.3.1 versions...
CVE-2023-25784 WordPress Sticky Ad Bar Plugin <= 1.3.1 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Bon Plan Gratos Sticky Ad Bar plugin = 1.3.1 versions...
CVE-2023-25784
CVE-2023-25784 refers to an admin+ stored XSS in the WordPress plugin Sticky Ad Bar (older name variants) up to version 1.3.1. Public sources in the connected documents consistently describe the flaw as arising from inadequate sanitization/escaping of plugin settings, enabling stored XSS by high-...