Lucene search
WpvulndbWPVDB-ID:100E2417-FDED-44B5-89FC-FC265D5870F0HistoryOct 31, 2023 - 12:00 a.m.
WPPizza < 3.18.3 - Reflected XSS
2023-10-3100:00:00
wpscan.com
5
wppizza
plugin
xss
vulnerability
sanitise
escape
parameters
outputting
page
cross-site scripting
high privilege
users
admin
Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Related
cve
cve
CVE-2023-46622
2023-10-31 10:15:08
cvelist
cvelist
prion
prion
Cross site scripting
2023-10-31 10:15:00
vulnrichment
vulnrichment
nvd
nvd
CVE-2023-46622
2023-10-31 10:15:08
wordfence
wordfence
AI Score
5.7
Confidence
High
EPSS
0.001
Percentile
17.0%
Related for WPVDB-ID:100E2417-FDED-44B5-89FC-FC265D5870F0