Lucene search
WpvulndbWPVDB-ID:5567B8DC-8A1B-41B4-8B7D-3E48410EB2AEHistoryNov 23, 2023 - 12:00 a.m.
Post Status Notifier Lite < 1.11.1 - Reflected Cross-Site Scripting
2023-11-2300:00:00
wpscan.com
2
wordpress
cross-site scripting
vulnerability
input sanitization
Description The Post Status Notifier Lite plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.11.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
Related
cvelist
cvelist
nvd
nvd
CVE-2023-47766
2023-11-22 22:15:07
prion
prion
Cross site scripting
2023-11-22 22:15:00
cve
cve
CVE-2023-47766
2023-11-22 22:15:07
wordfence
wordfence
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
17.0%
Related for WPVDB-ID:5567B8DC-8A1B-41B4-8B7D-3E48410EB2AE