Lucene search
+L

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:15 a.m.4 views

CVE-2023-49839

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in KlbTheme Cosmetsy theme core plugin, KlbTheme Partdo theme core plugin, KlbTheme Bacola theme core plugin, KlbTheme Medibazar theme core plugin, KlbTheme Furnob theme core plugin, KlbTheme Clotya...

7.1CVSS8.5AI score0.00465EPSS
Exploits0References1
NVD
NVD
added 2024/03/26 8:15 a.m.10 views

CVE-2023-49839

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in KlbTheme Cosmetsy theme core plugin, KlbTheme Partdo theme core plugin, KlbTheme Bacola theme core plugin, KlbTheme Medibazar theme core plugin, KlbTheme Furnob theme core plugin, KlbTheme Clotya...

7.1CVSS6.9AI score0.00465EPSS
Exploits0References6
CVE
CVE
added 2024/03/26 7:57 a.m.54 views

CVE-2023-49839

CVE-2023-49839 is a reflected XSS in KlbTheme core plugins (Cosmetsy, Partdo, Bacola, Medibazar, Furnob, Clotya) caused by improper neutralization of input during web page generation. Affected versions include Cosmetsy up to 1.3.0; Partdo up to 1.0.9; Bacola up to 1.3.3; Medibazar up to 1.2.3; Fu...

7.1CVSS8.5AI score0.00465EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/03/26 7:57 a.m.19 views

CVE-2023-49839 Reflected Cross-Site Scripting vulnerability in multiple WordPress components by KlbTheme

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in KlbTheme Cosmetsy theme core plugin, KlbTheme Partdo theme core plugin, KlbTheme Bacola theme core plugin, KlbTheme Medibazar theme core plugin, KlbTheme Furnob theme core plugin, KlbTheme Clotya...

7.1CVSS7.2AI score0.00465EPSS
Exploits0References6
Patchstack
Patchstack
added 2023/12/06 12:0 a.m.12 views

WordPress Cosmetsy Core Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Cosmetsy Core Type Plugin Vulnerable versions = 1.3.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49839 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 77a58ba376e1 Credits RE-ALTER Required privilege...

7.1CVSS6.8AI score0.00465EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/12/06 12:0 a.m.11 views

WordPress Partdo Core Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Partdo Core Type Plugin Vulnerable versions = 1.0.9 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49839 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 032d52a975bc Credits RE-ALTER Required privilege...

7.1CVSS6.8AI score0.00465EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/12/06 12:0 a.m.9 views

WordPress Furnob Core Plugin <= 1.1.7 is vulnerable to Cross Site Scripting (XSS)

Software Furnob Core Type Plugin Vulnerable versions = 1.1.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49839 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6b532f21e047 Credits RE-ALTER Required privilege...

7.1CVSS6.8AI score0.00465EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/12/06 12:0 a.m.12 views

WordPress Bacola Core Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)

Software Bacola Core Type Plugin Vulnerable versions = 1.3.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49839 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID d717888feaf6 Credits RE-ALTER Required privilege Unauthenticate...

7.1CVSS6.8AI score0.00465EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/12/06 12:0 a.m.9 views

WordPress Clotya Core Plugin <= 1.1.5 is vulnerable to Cross Site Scripting (XSS)

Software Clotya Core Type Plugin Vulnerable versions = 1.1.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49839 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e214e8c2ed6d Credits RE-ALTER Required privilege...

7.1CVSS6.8AI score0.00465EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder