3 matches found
CVE-2023-44228
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Gopi Ramasamy Onclick show popup plugin = 8.1 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Gopi Ramasamy Onclick show popup plugin = 8.1 versions...
CVE-2023-44228
CVE-2023-44228 corresponds to a stored XSS vulnerability in the WordPress plugin “Onclick show popup” (admin+ required) affecting versions up to 8.1. Multiple sources in connected documents consistently describe the flaw as an authenticated (admin+) stored XSS in that plugin, with impact limited ...