CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

OSV•added 2023/11/03 2:15 p.m.•0 views

CVE-2023-5946

The Digirisk plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'currentgroupid' parameter in version 6.0.0.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...

6.1CVSS5.9AI score0.0071EPSS

Exploits0References2

ATTACKERKB•added 2023/11/03 2:15 p.m.•1 views

CVE-2023-5946

6.1CVSS6AI score0.0071EPSS

Exploits0References3Affected Software1

NVD•added 2023/11/03 2:15 p.m.•9 views

CVE-2023-5946

6.1CVSS6.1AI score0.0071EPSS

Exploits0References2

Cvelist•added 2023/11/03 1:51 p.m.•13 views

CVE-2023-5946

6.1CVSS6.2AI score0.0071EPSS

Exploits0References2

CNNVD•added 2023/11/03 12:0 a.m.•3 views

WordPress Plugin Digirisk Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

6.1CVSS6.2AI score0.0071EPSS

Exploits0References3

Positive Technologies•added 2023/11/03 12:0 a.m.•3 views

PT-2023-32435 · WordPress · Digirisk

Name of the Vulnerable Software and Affected Versions: Digirisk plugin for WordPress version 6.0.0.0 Description: The issue is related to Reflected Cross-Site Scripting via the current group id parameter due to insufficient input sanitization and output escaping. This allows unauthenticated...

6.1CVSS6.7AI score0.0071EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by