Lucene search
WpvulndbWPVDB-ID:38BA58FB-5CFA-4283-82E5-80E270D3DA91HistoryJul 05, 2023 - 12:00 a.m.
WP Reroute Email < 1.5.0 - Unauthenticated Stored Cross-Site Scripting
2023-07-0500:00:00
wpscan.com
3
wordpress
email
cross-site scripting
injection
web scripts
vulnerability
0.001 Low
EPSS
Percentile
32.2%
The plugin does not properly sanitize and escape input in the email subject, leading to potential Stored Cross-Site Scripting issues. This flaw allows the injection of arbitrary web scripts that are executed whenever an injected page is accessed.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp-reroute-email | lt | 1.5.0 |
Related
cve
cve
CVE-2023-3168
2023-07-12 05:15:10
nvd
nvd
CVE-2023-3168
2023-07-12 05:15:10
prion
prion
Cross site scripting
2023-07-12 05:15:00
cvelist
cvelist
CVE-2023-3168
2023-07-12 04:38:44
wordfence
wordfence