3 matches found
CVE-2023-4284
creationtimestamp| type| source ---|---|--- 2023-09-04 16:16:40+00:00| seen| https://t.me/cibsecurity/69793 2025-03-19 21:02:04+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lkr3emgrld2s...
CVE-2023-4284
The CVE-2023-4284 entry corresponds to a cross-site scripting vulnerability in the WordPress Post Timeline plugin, affecting versions prior to 2.2.6. The root cause is failure to sanitize and escape an invalid nonce before echoing it in an AJAX response, resulting in a reflected XSS that can affe...
WordPress Post Timeline Plugin <= 2.2.5 is vulnerable to Cross Site Scripting (XSS)
Software Post Timeline Type Plugin Vulnerable versions = 2.2.5 Fixed in 2.2.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-4284 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 86a5f3c466ca Credits tnt24 Required...