CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-0063

The WordPress Shortcodes WordPress plugin through 1.6.36 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.8%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2023-0063

Synved » Wordpress Shortcodes » Version: N/A

cpe:2.3:a:synved:wordpress_shortcodes:-
Synved » Wordpress Shortcodes » Version: 1.6.10

cpe:2.3:a:synved:wordpress_shortcodes:1.6.10
Synved » Wordpress Shortcodes » Version: 1.6.11

cpe:2.3:a:synved:wordpress_shortcodes:1.6.11
Synved » Wordpress Shortcodes » Version: 1.6.12

cpe:2.3:a:synved:wordpress_shortcodes:1.6.12
Synved » Wordpress Shortcodes » Version: 1.6.13

cpe:2.3:a:synved:wordpress_shortcodes:1.6.13
Synved » Wordpress Shortcodes » Version: 1.6.14

cpe:2.3:a:synved:wordpress_shortcodes:1.6.14
Synved » Wordpress Shortcodes » Version: 1.6.15

cpe:2.3:a:synved:wordpress_shortcodes:1.6.15
Synved » Wordpress Shortcodes » Version: 1.6.16

cpe:2.3:a:synved:wordpress_shortcodes:1.6.16
Synved » Wordpress Shortcodes » Version: 1.6.17

cpe:2.3:a:synved:wordpress_shortcodes:1.6.17
Synved » Wordpress Shortcodes » Version: 1.6.18

cpe:2.3:a:synved:wordpress_shortcodes:1.6.18
Synved » Wordpress Shortcodes » Version: 1.6.19

cpe:2.3:a:synved:wordpress_shortcodes:1.6.19
Synved » Wordpress Shortcodes » Version: 1.6.20

cpe:2.3:a:synved:wordpress_shortcodes:1.6.20
Synved » Wordpress Shortcodes » Version: 1.6.21

cpe:2.3:a:synved:wordpress_shortcodes:1.6.21
Synved » Wordpress Shortcodes » Version: 1.6.22

cpe:2.3:a:synved:wordpress_shortcodes:1.6.22
Synved » Wordpress Shortcodes » Version: 1.6.23

cpe:2.3:a:synved:wordpress_shortcodes:1.6.23
Synved » Wordpress Shortcodes » Version: 1.6.24

cpe:2.3:a:synved:wordpress_shortcodes:1.6.24
Synved » Wordpress Shortcodes » Version: 1.6.25

cpe:2.3:a:synved:wordpress_shortcodes:1.6.25
Synved » Wordpress Shortcodes » Version: 1.6.26

cpe:2.3:a:synved:wordpress_shortcodes:1.6.26
Synved » Wordpress Shortcodes » Version: 1.6.27

cpe:2.3:a:synved:wordpress_shortcodes:1.6.27
Synved » Wordpress Shortcodes » Version: 1.6.28

cpe:2.3:a:synved:wordpress_shortcodes:1.6.28
Synved » Wordpress Shortcodes » Version: 1.6.29

cpe:2.3:a:synved:wordpress_shortcodes:1.6.29
Synved » Wordpress Shortcodes » Version: 1.6.3

cpe:2.3:a:synved:wordpress_shortcodes:1.6.3
Synved » Wordpress Shortcodes » Version: 1.6.30

cpe:2.3:a:synved:wordpress_shortcodes:1.6.30
Synved » Wordpress Shortcodes » Version: 1.6.31

cpe:2.3:a:synved:wordpress_shortcodes:1.6.31
Synved » Wordpress Shortcodes » Version: 1.6.32

cpe:2.3:a:synved:wordpress_shortcodes:1.6.32
Synved » Wordpress Shortcodes » Version: 1.6.33

cpe:2.3:a:synved:wordpress_shortcodes:1.6.33
Synved » Wordpress Shortcodes » Version: 1.6.34

cpe:2.3:a:synved:wordpress_shortcodes:1.6.34
Synved » Wordpress Shortcodes » Version: 1.6.35

cpe:2.3:a:synved:wordpress_shortcodes:1.6.35
Synved » Wordpress Shortcodes » Version: 1.6.36

cpe:2.3:a:synved:wordpress_shortcodes:1.6.36
Synved » Wordpress Shortcodes » Version: 1.6.4

cpe:2.3:a:synved:wordpress_shortcodes:1.6.4
Synved » Wordpress Shortcodes » Version: 1.6.5

cpe:2.3:a:synved:wordpress_shortcodes:1.6.5
Synved » Wordpress Shortcodes » Version: 1.6.6

cpe:2.3:a:synved:wordpress_shortcodes:1.6.6
Synved » Wordpress Shortcodes » Version: 1.6.7

cpe:2.3:a:synved:wordpress_shortcodes:1.6.7
Synved » Wordpress Shortcodes » Version: 1.6.8

cpe:2.3:a:synved:wordpress_shortcodes:1.6.8
Synved » Wordpress Shortcodes » Version: 1.6.9

cpe:2.3:a:synved:wordpress_shortcodes:1.6.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-0063

Products

Pricing

Contact Us