4 matches found
CVE-2023-27616
Unauth. Stored Cross-Site Scripting XSS vulnerability in David F. Carr RSVPMaker plugin = 10.6.6 versions...
CVE-2023-27616
CVE-2023-27616 concerns the WordPress RSVPMaker plugin. Connected data confirms an unauthenticated stored XSS vulnerability in RSVPMaker versions <= 10.6.6, with CVE-2023-27616. The issue stems from inadequate escaping/validation, enabling a malicious user to inject script that could be stored...
CVE-2023-27616 WordPress RSVPMarker Plugin <= 10.6.6 is vulnerable to Cross Site Scripting (XSS)
Unauth. Stored Cross-Site Scripting XSS vulnerability in David F. Carr RSVPMaker plugin = 10.6.6 versions...
WordPress RSVPMarker Plugin <= 10.6.6 is vulnerable to Cross Site Scripting (XSS)
Software RSVPMarker Type Plugin Vulnerable versions = 10.6.6 Fixed in 10.6.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-27616 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c71696c6cb5c Credits Muhammad Arsalan...