WordPress Post Status Notifier Lite <1.10.1 - Cross-Site Scripting

WordPress Post Status Notifier Lite plugin before 1.10.1 contains a cross-site scripting vulnerability. The plugin does not sanitize and escape a parameter before outputting it back in the page. An attacker can inject arbitrary script in the browser of an unsuspecting user in the context of the...

CVE-2023-47766

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Timo Reith Post Status Notifier Lite plugin = 1.11.0 versions...

WordPress Post Status Notifier Lite Plugin <= 1.11.6 is vulnerable to Cross Site Scripting (XSS)

Software Post Status Notifier Lite Type Plugin Vulnerable versions = 1.11.6 Fixed in 1.11.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10048 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fa83a961050b Credits Colin...

WordPress plugin Post Status Notifier Lite and Premium 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in the...

CVE-2023-47766

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Timo Reith Post Status Notifier Lite plugin = 1.11.0 versions...

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Timo Reith Post Status Notifier Lite plugin = 1.11.0 versions...

CVE-2023-47766

CVE-2023-47766 affects the WordPress plugin Post Status Notifier Lite (versions

PT-2023-30595 · Timo Reith · Post Status Notifier Lite

Name of the Vulnerable Software and Affected Versions: Timo Reith Post Status Notifier Lite plugin versions = 1.11.0 Description: The issue is related to improper neutralization of input during web page generation, which can lead to Cross-site Scripting. Recommendations: For Timo Reith Post Statu...

WordPress Post Status Notifier Lite Plugin <= 1.11.0 is vulnerable to Cross Site Scripting (XSS)

Software Post Status Notifier Lite Type Plugin Vulnerable versions = 1.11.0 Fixed in 1.11.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-47766 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 689a35bf0f0b Credits LEE SE...

CVE-2022-4325 Post Status Notifier Lite < 1.10.1 - Reflected XSS

The Post Status Notifier Lite WordPress plugin before 1.10.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which can be used against high privilege users such as admin...

CVE-2022-4325

CVE-2022-4325 affects the WordPress plugin Post Status Notifier Lite prior to version 1.10.1. The issue is a reflected XSS caused by improper sanitization/escaping of a parameter before output on the page, enabling an attacker to pull off script execution in the context of the site and potentiall...

Post Status Notifier Lite < 1.10.1 - Reflected XSS

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which can be used against high privilege users such as admin. Make a logged in high privilege user such as admin open the URL below...