Vulnerability Details CVE-2023-25031
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.1 versions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.2%
CVSS Severity
CVSS v3 Score 5.9
References
- https://patchstack.com/database/vulnerability/bft-autoresponder/wordpress-arigato-autoresponder-and-newsletter-plugin-2-7-1-cross-site-scripting-xss?_s_id=cve
- https://patchstack.com/database/vulnerability/bft-autoresponder/wordpress-arigato-autoresponder-and-newsletter-plugin-2-7-1-cross-site-scripting-xss?_s_id=cve
Products affected by CVE-2023-25031
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:1.7
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:1.8
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:1.9
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:2.0
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:2.1
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:2.2
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:2.3
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:2.4
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:2.5
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:2.5.1.7
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:2.5.1.8
-
cpe:2.3:a:kibokolabs:arigato_autoresponder_and_newsletter:2.5.4