2 matches found
CVE-2023-5614
CVE-2023-5614 – Theme Switcha for WordPress is a stored XSS vulnerability in the shortcode shortname theme_switcha_list, present in all versions up to 3.3. Attack requires authentication at contributor level or higher. The issue stems from insufficient input sanitization and output escaping on us...
WordPress Theme Switcha Plugin <= 3.3 is vulnerable to Cross Site Scripting (XSS)
Software Theme Switcha Type Plugin Vulnerable versions = 3.3 Fixed in 3.3.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5614 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 14276bf399ef Credits Lana Codes Required privileg...