Lucene search
WpvulndbWPVDB-ID:B9B1A3E5-2EDC-4552-8087-C32D591001F0HistoryNov 15, 2023 - 12:00 a.m.
SendPress Newsletters <= 1.23.11.6 - Reflected XSS
2023-11-1500:00:00
wpscan.com
4
sendpress
xss
vulnerability
unescaped parameters
high privilege user
Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Related
prion
prion
Cross site scripting
2023-11-14 23:15:00
cvelist
cvelist
cve
cve
CVE-2023-47517
2023-11-14 23:15:11
osv
osv
CVE-2023-47517
2023-11-14 23:15:11
nvd
nvd
CVE-2023-47517
2023-11-14 23:15:11
wordfence
wordfence
8 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.1%
Related for WPVDB-ID:B9B1A3E5-2EDC-4552-8087-C32D591001F0