Tapfiliate 3.0.13 Admin+ Stored XSS. Plugin settings not sanitized. Admin XSS even with disallowed unfiltered_html capability in multisite setu
Reporter | Title | Published | Views | Family All 7 |
---|---|---|---|---|
CVE | CVE-2023-25789 | 3 May 202311:15 | – | cve |
Prion | Cross site scripting | 3 May 202311:15 | – | prion |
Vulnrichment | CVE-2023-25789 WordPress Tapfiliate Plugin <= 3.0.12 is vulnerable to Cross Site Scripting (XSS) | 3 May 202310:43 | – | vulnrichment |
Patchstack | WordPress Tapfiliate Plugin <= 3.0.12 is vulnerable to Cross Site Scripting (XSS) | 15 Feb 202300:00 | – | patchstack |
Cvelist | CVE-2023-25789 WordPress Tapfiliate Plugin <= 3.0.12 is vulnerable to Cross Site Scripting (XSS) | 3 May 202310:43 | – | cvelist |
NVD | CVE-2023-25789 | 3 May 202311:15 | – | nvd |
Wordfence Blog | Wordfence Intelligence CE Weekly Vulnerability Report (Feb 13, 2023 to Feb 19, 2023) | 23 Feb 202316:30 | – | wordfence |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo