Lucene search
K

5 matches found

NVD
NVD
added 2024/01/05 12:15 p.m.19 views

CVE-2023-52124

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ShapedPlugin LLC WP Tabs – Responsive Tabs Plugin for WordPress allows Stored XSS.This issue affects WP Tabs – Responsive Tabs Plugin for WordPress: from n/a through 2.2.0...

6.5CVSS6.5AI score0.00303EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/01/05 11:17 a.m.2 views

CVE-2023-52124 WordPress WP Tabs Plugin <= 2.2.0 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ShapedPlugin LLC WP Tabs – Responsive Tabs Plugin for WordPress allows Stored XSS.This issue affects WP Tabs – Responsive Tabs Plugin for WordPress: from n/a through 2.2.0...

6.5CVSS6.7AI score0.00303EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/05 11:17 a.m.16 views

CVE-2023-52124 WordPress WP Tabs Plugin <= 2.2.0 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ShapedPlugin LLC WP Tabs – Responsive Tabs Plugin for WordPress allows Stored XSS.This issue affects WP Tabs – Responsive Tabs Plugin for WordPress: from n/a through 2.2.0...

6.5CVSS6.7AI score0.00303EPSS
Exploits0References1
CVE
CVE
added 2024/01/05 11:17 a.m.80 views

CVE-2023-52124

CVE-2023-52124 is an authenticated stored XSS against the WP Tabs – Responsive Tabs plugin for WordPress (vulnerable: up to 2.2.0). The issue arises from improper input neutralization during web page generation, enabling an attacker with a valid user account (likely a Contributor+ role) to inject...

6.5CVSS6.8AI score0.00303EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/12/28 12:0 a.m.11 views

WordPress WP Tabs Plugin <= 2.2.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Tabs Type Plugin Vulnerable versions = 2.2.0 Fixed in 2.2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-52124 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a52c5f0b85cc Credits Ray Wilson Required privilege Contributor...

6.5CVSS6.6AI score0.00303EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder