Lucene search
WpvulndbWPVDB-ID:C2C5A8BA-EC67-469C-9272-7B06A8CA5D04HistoryApr 06, 2023 - 12:00 a.m.
IMPress Listings <= 2.6.2 - Contributor+ Stored XSS
2023-04-0600:00:00
wpscan.com
6
plugin
sanitization
escape
parameters
low role
xss
cross-site scripting
0.0005 Low
EPSS
Percentile
17.7%
The plugin does not sanitise and escape some parameters, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp-listings | eq | * |
Related
nvd
nvd
CVE-2023-22711
2023-05-10 08:15:09
prion
prion
Cross site scripting
2023-05-10 08:15:00
cvelist
cvelist
cve
cve
CVE-2023-22711
2023-05-10 08:15:09
wordfence
wordfence