Lucene search
WpvulndbWPVDB-ID:F276FC61-19B2-48DC-928F-75287B3A62B8HistoryJul 05, 2023 - 12:00 a.m.
WP Mail Log < 1.1.2 - Unauthenticated Stored Cross-Site Scripting
2023-07-0500:00:00
wpscan.com
4
wp mail log
cross-site scripting
vulnerability
injection
web scripts
unauthenticated
0.001 Low
EPSS
Percentile
32.2%
The plugin does not properly sanitize and escape email contents, leading to a potential Stored Cross-Site Scripting vulnerability. This issue allows for arbitrary web scripts to be injected into pages, which will execute when a user accesses an affected page.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp-mail-log | eq | * |
Related
cve
cve
CVE-2023-3088
2023-07-12 05:15:09
nvd
nvd
CVE-2023-3088
2023-07-12 05:15:09
prion
prion
Cross site scripting
2023-07-12 05:15:00
cvelist
cvelist
CVE-2023-3088
2023-07-12 04:38:46
wordfence
wordfence