2 matches found
CVE-2023-5161
CVE-2023-5161 – WordPress Modal Window plugin is vulnerable to stored XSS via shortcode attributes in versions up to 5.3.5. Root cause: insufficient input sanitization and output escaping for user-supplied shortcode attributes. Impact: authenticated attackers with contributor-level permissions ca...
WordPress Modal Window Plugin <= 5.3.5 is vulnerable to Cross Site Scripting (XSS)
Software Modal Window Type Plugin Vulnerable versions = 5.3.5 Fixed in 5.3.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5161 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 08629e325eb0 Credits Lana Codes Required privile...