Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.8
CVE-2023-2635
- EPSS 0.1%
- Veröffentlicht 10.07.2023 16:15:51
- Zuletzt bearbeitet 21.11.2024 07:58:58
The Call Now Accessibility Button WordPress plugin before 1.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capabil...
4.8
CVE-2023-2028
- EPSS 0.08%
- Veröffentlicht 10.07.2023 16:15:50
- Zuletzt bearbeitet 21.11.2024 07:57:47
The Call Now Accessibility Button WordPress plugin before 1.1 does not properly sanitize some of its settings, which could allow high-privilege users to perform Stored Cross-Site Scripting (XSS) attacks even when the unfiltered_html capability is dis...
4.8
CVE-2023-28933
- EPSS 0.06%
- Veröffentlicht 12.06.2023 16:15:09
- Zuletzt bearbeitet 21.11.2024 07:56:15
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in StPeteDesign Call Now Accessibility Button plugin <= 1.1 versions.
1