Vulnerability Details CVE-2023-1106
Cross-site Scripting (XSS) - Reflected in GitHub repository flatpressblog/flatpress prior to 1.3.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.0%
CVSS Severity
CVSS v3 Score 5.3
References
- https://github.com/flatpressblog/flatpress/commit/5f23b4c2eac294cc0ba5e541f83a6f8a26f9fed1
- https://huntr.dev/bounties/1288ec00-f69d-4b84-abce-efc9a97941a0
- https://github.com/flatpressblog/flatpress/commit/5f23b4c2eac294cc0ba5e541f83a6f8a26f9fed1
- https://huntr.dev/bounties/1288ec00-f69d-4b84-abce-efc9a97941a0
Products affected by CVE-2023-1106
-
cpe:2.3:a:flatpress:flatpress:-
-
cpe:2.3:a:flatpress:flatpress:0.804
-
cpe:2.3:a:flatpress:flatpress:1.0.1
-
cpe:2.3:a:flatpress:flatpress:1.0.2
-
cpe:2.3:a:flatpress:flatpress:1.0.3
-
cpe:2.3:a:flatpress:flatpress:1.1
-
cpe:2.3:a:flatpress:flatpress:1.2
-
cpe:2.3:a:flatpress:flatpress:1.2.1