5 matches found
CVE-2023-49158
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Binh Nguyen LadiApp ladipage allows Stored XSS.This issue affects LadiApp: from n/a through = 4.4...
CVE-2023-49158 WordPress LadiApp plugin <= 4.4 - Broken Access Control lead to XSS vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Binh Nguyen LadiApp ladipage allows Stored XSS.This issue affects LadiApp: from n/a through = 4.4...
CVE-2023-49158 WordPress LadiApp plugin <= 4.4 - Broken Access Control lead to XSS vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Binh Nguyen LadiApp ladipage allows Stored XSS.This issue affects LadiApp: from n/a through = 4.4...
CVE-2023-49158
CVE-2023-49158 affects the WordPress plugin LadiApp (LadiPage) and permits Stored XSS due to improper input neutralization during web page generation. Affected: LadiApp versions up to 4.4. Root cause: inadequate sanitization of input when generating pages. Impact: stored cross-site scripting coul...
WordPress LadiApp Plugin <= 4.4 is vulnerable to Broken Access Control
Software LadiApp Type Plugin Vulnerable versions = 4.4 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-49158 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID d4f5b16a2edf Credits Truoc Phan Required privilege Subscribe...