Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:44 a.m.9 views

CVE-2023-3081

The WP Mail Logging plugin for WordPress is vulnerable to Stored Cross-Site Scripting via email contents in versions up to, and including, 1.11.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pag...

7.2CVSS6.1AI score0.00654EPSS
Exploits0References1
NVD
NVD
added 2023/07/12 5:15 a.m.26 views

CVE-2023-3081

The WP Mail Logging plugin for WordPress is vulnerable to Stored Cross-Site Scripting via email contents in versions up to, and including, 1.11.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pag...

7.2CVSS6.3AI score0.00654EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/07/12 4:38 a.m.34 views

CVE-2023-3081 WP Mail Logging <= 1.11.1 - Unauthenticated Stored Cross-Site Scripting via Email

The WP Mail Logging plugin for WordPress is vulnerable to Stored Cross-Site Scripting via email contents in versions up to, and including, 1.11.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pag...

7.2CVSS6.4AI score0.00654EPSS
Exploits0References3
CVE
CVE
added 2023/07/12 4:38 a.m.53 views

CVE-2023-3081

The CVE-2023-3081 entry covers the WP Mail Logging WordPress plugin, which is vulnerable to Stored Cross-Site Scripting via email contents in versions up to and including 1.11.1. The root cause is insufficient input sanitization and output escaping in the email-logging display path, enabling an u...

7.2CVSS5.8AI score0.00654EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder