Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:32 p.m.14 views

CVE-2023-4549

The DoLogin Security WordPress plugin before 3.7 does not properly sanitize IP addresses coming from the X-Forwarded-For header, which can be used by attackers to conduct Stored XSS attacks via WordPress' login form...

6.1CVSS5.7AI score0.00627EPSS
Exploits2References1
Patchstack
Patchstack
added 2023/09/26 12:0 a.m.17 views

WordPress DoLogin Security Plugin < 3.7 is vulnerable to Cross Site Scripting (XSS)

Software DoLogin Security Type Plugin Vulnerable versions 3.7 Fixed in 3.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-4549 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ea7d8ad59ce2 Credits Bartlomiej Marek and...

6.1CVSS5.8AI score0.00627EPSS
Exploits2References3Affected Software1
NVD
NVD
added 2023/09/25 4:15 p.m.25 views

CVE-2023-4549

The DoLogin Security WordPress plugin before 3.7 does not properly sanitize IP addresses coming from the X-Forwarded-For header, which can be used by attackers to conduct Stored XSS attacks via WordPress' login form...

6.1CVSS5.9AI score0.00627EPSS
Exploits2References1
CVE
CVE
added 2023/09/25 3:56 p.m.71 views

CVE-2023-4549

CVE-2023-4549 concerns the DoLogin Security WordPress plugin, affected versions prior to 3.7. The vulnerability stems from improper sanitization of IPs from the X-Forwarded-For header, enabling a stored Cross-Site Scripting (XSS) attack through WordPress’ login form. Public references in the prov...

6.1CVSS6.1AI score0.00627EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2023/09/25 3:56 p.m.34 views

CVE-2023-4549 DoLogin Security < 3.7 - Unauthenticated Stored Cross-Site Scripting

The DoLogin Security WordPress plugin before 3.7 does not properly sanitize IP addresses coming from the X-Forwarded-For header, which can be used by attackers to conduct Stored XSS attacks via WordPress' login form...

6AI score0.00627EPSS
Exploits2References1
Rows per page
Query Builder