4 matches found
CVE-2023-46626
Unauth. Reflected Cross-Site Scripting XSS vulnerability in FLOWFACT WP Connector plugin = 2.1.7 versions...
CVE-2023-46626 WordPress FLOWFACT WP Connector Plugin <= 2.1.7 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in FLOWFACT WP Connector plugin = 2.1.7 versions...
CVE-2023-46626
CVE-2023-46626 : FLOWFACT WP Connector plugin is vulnerable to unauthenticated reflected XSS. Connected sources indicate affected versions up to and including 2.1.8, with no patch yet documented (Fixed in: N/A). The issue arises from improper input sanitization in the plugin, enabling an attacker...
WordPress FLOWFACT WP Connector Plugin <= 2.1.8 is vulnerable to Cross Site Scripting (XSS)
Software FLOWFACT WP Connector Type Plugin Vulnerable versions = 2.1.8 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-46626 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 4181d29794c9 Credits Jonas Höbenreich...