3 matches found
CVE-2023-47853
CVE-2023-47853 is a Stored XSS in the WordPress plugin myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin. The vulnerability stems from improper neutralization of input during web page generation, enabling attackers to inject scripts. Affected versions are up to 2.6.1; the iss...
CVE-2023-47853 WordPress myCred Plugin <= 2.6.1 is vulnerable to Cross Site Scripting (XSS)
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in myCred myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin allows Stored XSS.This issue affects myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin: from n/a...
WordPress myCred Plugin <= 2.6.1 is vulnerable to Cross Site Scripting (XSS)
Software myCred Type Plugin Vulnerable versions = 2.6.1 Fixed in 2.6.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-47853 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7a775c0398b7 Credits Khalid Yusuf Required privilege Contributor...