2 matches found
CVE-2023-32624
CVE-2023-32624 is a Cross-site scripting vulnerability in the WordPress plugin TS Webfonts for SAKURA. Affected are TS Webfonts for SAKURA versions 3.1.0 and earlier; the issue allows a remote unauthenticated attacker to inject arbitrary script into a user’s browser. JVN documentation lists a fix...
JVN#90560760: Multiple vulnerabilities in WordPress Plugin "TS Webfonts for SAKURA"
WordPress Plugin "TS Webfonts for SAKURA" provided by SAKURA internet Inc. contains multiple vulnerabilities listed below. Cross-site scripting CWE-79 - CVE-2023-32624 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS v2|...