CVE-2023-0175

Exploit

EPSS 0.11%
Veröffentlicht 20.03.2023 16:15:11
Zuletzt bearbeitet 26.02.2025 19:15:14
Quelle contact@wpscan.com
Teams Watchlist Login
Unerledigt Login

The Responsive Clients Logo Gallery Plugin for WordPress plugin through 1.1.9 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.0.0 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.0.1 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.0.2 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.0.3 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.0.4 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.0.5 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.0.6 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.0.7 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.0.8 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.0.9 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.1.0 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.1.1 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.1.2 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.1.3 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.1.4 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.1.5 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.1.6 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.1.7 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.1.8 SwPlatformwordpress

Accesspressthemes ≫ Smart Logo Showcase Lite Version1.1.9 SwPlatformwordpress

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.11%	0.3

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.4	2.3	2.7	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0	5.4	2.3	2.7	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

https://wpscan.com/vulnerability/cdcd3c2c-cb29-4b21-8d3d-7eafbc1d3098

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2023-0175

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-0175

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-0175

EUVD