2 matches found
CVE-2023-4944
CVE-2023-4944 affects the WordPress plugin Awesome Weather Widget (WordPress plugin). The Red Hat and Wordfence records confirm a Stored Cross-Site Scripting (XSS) vulnerability via the shortcodes: specifically, the awesome-weather shortcode can be exploited due to insufficient input sanitization...
WordPress Awesome Weather Widget Plugin <= 3.0.2 is vulnerable to Cross Site Scripting (XSS)
Software Awesome Weather Widget Type Plugin Vulnerable versions = 3.0.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-4944 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID caba79ed19c3 Credits Lana Codes Required...