5 matches found
CVE-2023-28934
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Mammothology WP Full Stripe Free plugin = 1.6.1 versions...
CVE-2023-28934
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Mammothology WP Full Stripe Free plugin = 1.6.1 versions...
CVE-2023-28934 WordPress WP Full Stripe Free Plugin <= 1.6.1 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Mammothology WP Full Stripe Free plugin = 1.6.1 versions...
CVE-2023-28934
CVE-2023-28934 relates to a stored XSS vulnerability in the WordPress plugin WP Full Stripe Free (Mammothology WP Full Stripe Free) for versions ≤ 1.6.1. The flaw requires admin+ authentication and can be triggered via input handling within the plugin, enabling stored cross-site scripting. Public...
WordPress WP Full Stripe Free Plugin < 7.0.6 is vulnerable to Cross Site Scripting (XSS)
Software WP Full Stripe Free Type Plugin Vulnerable versions 7.0.6 Fixed in 7.0.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-28934 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d62d6ad1eafd Credits easyBug Required...