Lucene search
K

5 matches found

NVD
NVD
added 2023/10/16 8:15 p.m.17 views

CVE-2023-3746

The ActivityPub WordPress plugin before 1.0.0 does not sanitize and escape some data from post content, which could allow contributor and above role to perform Stored Cross-Site Scripting attacks...

5.4CVSS5.2AI score0.00403EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/10/16 7:39 p.m.10 views

CVE-2023-3746 ActivityPub for WordPress < 1.0.1 - Contributor+ Stored XSS

The ActivityPub WordPress plugin before 1.0.0 does not sanitize and escape some data from post content, which could allow contributor and above role to perform Stored Cross-Site Scripting attacks...

5.2AI score0.00403EPSS
Exploits2References1
CVE
CVE
added 2023/10/16 7:39 p.m.59 views

CVE-2023-3746

The CVE-2023-3746 refers to the ActivityPub for WordPress plugin (pre-1.0.1) where post content was not properly sanitized/escaped, enabling Stored XSS by contributors and higher. Public details consistently state the vulnerability stems from insufficient sanitization of post content, allowing an...

5.4CVSS5.4AI score0.00403EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2023/10/16 7:39 p.m.26 views

CVE-2023-3746 ActivityPub for WordPress < 1.0.1 - Contributor+ Stored XSS

The ActivityPub WordPress plugin before 1.0.0 does not sanitize and escape some data from post content, which could allow contributor and above role to perform Stored Cross-Site Scripting attacks...

5.4AI score0.00403EPSS
Exploits2References1
Patchstack
Patchstack
added 2023/09/26 12:0 a.m.22 views

WordPress ActivityPub Plugin < 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software ActivityPub Type Plugin Vulnerable versions 1.0.1 Fixed in 1.0.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-3746 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4e185588c9f2 Credits Ben Bidner Required privilege...

5.4CVSS6AI score0.00403EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder