2 matches found
CVE-2023-38516
CVE-2023-38516 is a stored Cross-Site Scripting (XSS) vulnerability in the WordPress WP OnlineSupport, Essential Plugin Audio Player with Playlist Ultimate plugin versions <= 1.2.2. The root cause is a stored XSS in the plugin that can be triggered by an attacker with Contributor+ permissions....
WordPress Audio Player with Playlist Ultimate Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)
Software Audio Player with Playlist Ultimate Type Plugin Vulnerable versions = 1.2.2 Fixed in 1.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-38516 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID dabac0be2565 Credits Rio...