CM Answers < 3.2.0 - Admin+ Stored XSS. Plugin settings not properly sanitized, allowing admin privilege XSS attacks despite unfiltered_html capability disallowance in multisite setup
Reporter | Title | Published | Views | Family All 7 |
---|---|---|---|---|
Patchstack | WordPress CM Answers Plugin <= 3.1.9 is vulnerable to Cross Site Scripting (XSS) | 23 Feb 202300:00 | – | patchstack |
Vulnrichment | CVE-2023-25992 WordPress CM Answers Plugin <= 3.1.9 is vulnerable to Cross Site Scripting (XSS) | 23 Mar 202316:18 | – | vulnrichment |
Cvelist | CVE-2023-25992 WordPress CM Answers Plugin <= 3.1.9 is vulnerable to Cross Site Scripting (XSS) | 23 Mar 202316:18 | – | cvelist |
Prion | Cross site scripting | 23 Mar 202317:15 | – | prion |
NVD | CVE-2023-25992 | 23 Mar 202317:15 | – | nvd |
CVE | CVE-2023-25992 | 23 Mar 202317:15 | – | cve |
Wordfence Blog | Wordfence Intelligence Weekly WordPress Vulnerability Report (Feb 20, 2023 to Feb 26, 2023) | 2 Mar 202314:49 | – | wordfence |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo