CVE-2023-3965

The nsc theme for WordPress is vulnerable to Reflected Cross-Site Scripting via prototype pollution in versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...

CVE-2023-3965

The nsc theme for WordPress is vulnerable to Reflected Cross-Site Scripting via prototype pollution in versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...

Cross site scripting

The nsc theme for WordPress is vulnerable to Reflected Cross-Site Scripting via prototype pollution in versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...

CVE-2023-3965 nsc <= 1.0 - Prototype Pollution to Reflected Cross-Site Scripting

The nsc theme for WordPress is vulnerable to Reflected Cross-Site Scripting via prototype pollution in versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that...

CVE-2023-3965

CVE-2023-3965 refers to the WordPress theme nsc (versions &lt;= 1.0). The vulnerability is described as a Reflected Cross-Site Scripting via prototype pollution caused by insufficient input sanitization and output escaping. Unauthenticated attackers could inject arbitrary scripts into pages that ...

PT-2023-27053 · WordPress · Nsc Theme

Name of the Vulnerable Software and Affected Versions: nsc theme for WordPress version 1.0 Description: The issue is related to Reflected Cross-Site Scripting via prototype pollution due to insufficient input sanitization and output escaping. This allows unauthenticated attackers to inject...

WordPress nsc Theme <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software nsc Type Theme Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-3965 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 16bf43f7a314 Credits longxi Required privilege Unauthenticated...