5 matches found
CVE-2023-5205
creationtimestamp| type| source ---|---|--- 2023-10-21 12:35:50+00:00| seen| https://t.me/cibsecurity/72728...
CVE-2023-5205
The Add Custom Body Class plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'addcustombodyclass' value in versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2023-5205
CVE-2023-5205 concerns the WordPress plugin Add Custom Body Class, affected <= 1.4.1. The vulnerability is a stored Cross-Site Scripting (XSS) flaw caused by insufficient input sanitization and output escaping of the add_custom_body_class parameter, allowing authenticated users with contributo...
CVE-2023-5205 Add Custom Body Class <= 1.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Add Custom Body Class plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'addcustombodyclass' value in versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
WordPress Add Custom Body Class Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS)
Software Add Custom Body Class Type Plugin Vulnerable versions = 1.4.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5205 Patch priority Low CVSS severity Low 6.4 Developer Claim ownership PSID 55c282d5e4c0 Credits Francesco Carlucci...