3 matches found
CVE-2023-32580
creationtimestamp| type| source ---|---|--- 2023-06-23 16:46:58+00:00| seen| https://t.me/cibsecurity/65463...
CVE-2023-32580
CVE-2023-32580 affects the WordPress plugin “Password Protected” (WPExperts) ≤ 2.6.2. The issue is an authenticated (admin+) Stored Cross‑Site Scripting (XSS) vulnerability, enabling script injection via the plugin’s handling of input when already logged in as an administrator. Multiple sources c...
WordPress Password Protected Plugin <= 2.6.2 is vulnerable to Cross Site Scripting (XSS)
Software Password Protected Type Plugin Vulnerable versions = 2.6.2 Fixed in 2.6.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-32580 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID a80c60dc1bba Credits Mika Required...