Lucene search
+L

5 matches found

NVD
NVD
added 2023/11/14 5:15 p.m.21 views

CVE-2023-47659

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Lavacode Lava Directory Manager plugin = 1.1.34 versions...

6.5CVSS0.00385EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/14 5:11 p.m.27 views

CVE-2023-47659 WordPress Lava Directory Manager Plugin <= 1.1.34 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Lavacode Lava Directory Manager plugin = 1.1.34 versions...

6.5CVSS6AI score0.00385EPSS
Exploits0References1
CVE
CVE
added 2023/11/14 5:11 p.m.76 views

CVE-2023-47659

CVE-2023-47659 is a stored XSS vulnerability in the Lava Directory Manager WordPress plugin by Lavacode, affecting versions up to 1.1.34. The vulnerability is exploitable by an authenticated contributor (per Patchstack) and remains unpatched in the public release history. Multiple sources corrobo...

6.5CVSS5.5AI score0.00385EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/14 5:11 p.m.10 views

CVE-2023-47659 WordPress Lava Directory Manager Plugin <= 1.1.34 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Lavacode Lava Directory Manager plugin = 1.1.34 versions...

6.5CVSS5.8AI score0.00385EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/11/07 12:0 a.m.15 views

WordPress Lava Directory Manager Plugin <= 1.1.34 is vulnerable to Cross Site Scripting (XSS)

Software Lava Directory Manager Type Plugin Vulnerable versions = 1.1.34 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-47659 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID cbb957e547b5 Credits Emili Castells...

6.5CVSS5.8AI score0.00385EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder