Lucene search
WpvulndbWPVDB-ID:2858B67E-17AC-4A2A-8A46-24367D248454HistoryJul 18, 2023 - 12:00 a.m.
YARPP < 5.30.4 - Contributor+ Stored Cross-Site Scripting
2023-07-1800:00:00
wpscan.com
7
plugin
sanitize
contributors
web scripts
Description The plugin does not properly sanitize the ‘className’ parameter, leading to Stored Cross-Site Scripting. Insufficient input sanitization and output escaping make it possible for contributors to inject arbitrary web scripts into pages.
Related
cvelist
cvelist
CVE-2023-2433
2023-07-18 08:37:09
prion
prion
Cross site scripting
2023-07-18 09:15:00
nvd
nvd
CVE-2023-2433
2023-07-18 09:15:11
cve
cve
CVE-2023-2433
2023-07-18 09:15:11
openvas
openvas
WordPress YARPP Plugin < 5.30.4 XSS Vulnerability
2023-07-20 00:00:00
wordfence
wordfence
AI Score
5.6
Confidence
High
EPSS
0.001
Percentile
28.5%
Related for WPVDB-ID:2858B67E-17AC-4A2A-8A46-24367D248454