4 matches found
CVE-2023-41729
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in SendPress Newsletters plugin = 1.22.3.31 versions...
CVE-2023-41729 WordPress SendPress Newsletters Plugin <= 1.22.3.31 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in SendPress Newsletters plugin = 1.22.3.31 versions...
CVE-2023-41729
This CVE affects the WordPress SendPress Newsletters plugin. The vulnerability is a stored XSS issue exploitable by an authenticated admin+ user, affecting plugin versions up to 1.22.3.31. Multiple sources corroborate the issue and indicate remediation by updating to a newer version than 1.22.3.3...
WordPress SendPress Newsletters Plugin <= 1.23.11.6 is vulnerable to Cross Site Scripting (XSS)
Software SendPress Newsletters Type Plugin Vulnerable versions = 1.23.11.6 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-41729 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 8d33c474b45b Credits yuyudhn Require...