5 matches found
CVE-2023-47522
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Photo Feed plugin = 2.2.1 versions...
CVE-2023-47522 WordPress Photo Feed Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Photo Feed plugin = 2.2.1 versions...
CVE-2023-47522
CVE-2023-47522 is a reflected, unauthenticated XSS vulnerability in the Photo Feed WordPress plugin prior to version 2.2.1. The issue is triggered via the pf-gid parameter, enabling attacker-controlled script execution in a victim’s browser. Affected software: Photo Feed plugin
CVE-2023-47522 WordPress Photo Feed Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Photo Feed plugin = 2.2.1 versions...
WordPress Photo Feed Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)
Software Photo Feed Type Plugin Vulnerable versions = 2.2.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-47522 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID c41c9fcd587f Credits Le Ngoc Anh Required...