3 matches found
CVE-2023-47510
CVE-2023-47510 concerns unauthenticated reflected XSS in the WordPress WPDBSpringClean plugin. Affected: WPDBSpringClean up to version 1.6. Root cause: improper validation of user input; the IBM bulletin cites exploitation via a crafted URL in the wcemails_edit parameter to execute scripts in the...
CVE-2023-47510
Unauth. Reflected Cross-Site Scripting XSS vulnerability in WPSolutions-HQ WPDBSpringClean plugin = 1.6 versions...
WordPress WPDBSpringClean Plugin <= 1.6 is vulnerable to Cross Site Scripting (XSS)
Software WPDBSpringClean Type Plugin Vulnerable versions = 1.6 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-47510 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b9275834f95c Credits LEE SE HYOUNG...