3 matches found
CVE-2023-36382
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Jeffrey-WP Media Library Categories plugin = 2.0.0 versions...
CVE-2023-36382 WordPress Media Library Categories Plugin <= 2.0.0 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Jeffrey-WP Media Library Categories plugin = 2.0.0 versions...
CVE-2023-36382
CVE-2023-36382 corresponds to an authenticated Stored Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Jeffrey-WP Media Library Categories (versions ≤ 2.0.0). The issue arises from an input/output handling flaw in the plugin’s category functionality, enabling an admin+ caller to i...