3 matches found
CVE-2023-49841
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in FancyThemes Optin Forms – Simple List Building Plugin for WordPress allows Stored XSS.This issue affects Optin Forms – Simple List Building Plugin for WordPress: from n/a through 1.3.3...
CVE-2023-49841
CVE-2023-49841 describes a Stored XSS in the Optin Forms – Simple List Building Plugin for WordPress (vulnerable up to 1.3.3/1.3.6 per sources). The root cause is improper input sanitization/output escaping in admin/settings-related paths, enabling authenticated attackers (Administrator) to injec...
WordPress Optin Forms Plugin <= 1.3.6 is vulnerable to Cross Site Scripting (XSS)
Software Optin Forms Type Plugin Vulnerable versions = 1.3.6 Fixed in 1.3.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49841 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 11e6af66fb2d Credits DoYeon Park p6rkdoye0n Required privilege...