4 matches found
CVE-2023-47654
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in livescore.Bz BZScore – Live Score plugin = 1.03 versions...
CVE-2023-47654 WordPress BZScore – Live Score Plugin <= 1.03 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in livescore.Bz BZScore – Live Score plugin = 1.03 versions...
CVE-2023-47654
CVE-2023-47654 affects the WordPress plugin BZScore – Live Score (BZScore – Live Score) up to version 1.03. It is an authenticated Stored Cross-Site Scripting (XSS) via shortcode with contributor-level permissions. The issue’s root cause is insufficient input sanitization/output escaping for user...
WordPress BZScore – Live Score Plugin <= 1.03 is vulnerable to Cross Site Scripting (XSS)
Software BZScore – Live Score Type Plugin Vulnerable versions = 1.03 Fixed in 1.6.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-47654 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 846b30ac50cf Credits yuyudhn Required...