5 matches found
CVE-2023-4810
The Responsive Pricing Table WordPress plugin before 5.1.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-4810
creationtimestamp| type| source ---|---|--- 2023-11-07 00:26:12+00:00| seen| https://t.me/cibsecurity/73654...
CVE-2023-4810 Responsive Pricing Table < 5.1.8 - Admin+ Stored Cross-Site Scriping
The Responsive Pricing Table WordPress plugin before 5.1.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-4810 Responsive Pricing Table < 5.1.8 - Admin+ Stored Cross-Site Scriping
The Responsive Pricing Table WordPress plugin before 5.1.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-4810
CVE-2023-4810 affects the WordPress plugin Responsive Pricing Table (pre-5.1.8). The issue is failure to sanitise/escape certain settings, enabling a stored Cross‑Site Scripting (XSS) attack by high‑privilege users (e.g., admins), including when unfiltered_html is disallowed (such as multisite). ...