2 matches found
CVE-2023-3167
CVE-2023-3167 - WordPress Mail Queue plugin : Stored XSS in the Email Subject field affecting WordPress plugins Mail Queue versions up to 1.1 due to insufficient input sanitization and output escaping. Exploitation possible by unauthenticated attackers, injecting scripts that execute when a user ...
WordPress Mail Queue Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS)
Software Mail Queue Type Plugin Vulnerable versions = 1.1 Fixed in 1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-3167 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID fb19b2f489d6 Credits Alex Thomas Required privilege...