Vulnerability Details CVE-2023-27425
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in James Irving-Swift Electric Studio Client Login plugin <= 0.8.1 versions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.1%
CVSS Severity
CVSS v3 Score 5.9
References
- https://patchstack.com/database/vulnerability/electric-studio-client-login/wordpress-electric-studio-client-login-plugin-0-8-1-cross-site-scripting-xss-vulnerability?_s_id=cve
- https://patchstack.com/database/vulnerability/electric-studio-client-login/wordpress-electric-studio-client-login-plugin-0-8-1-cross-site-scripting-xss-vulnerability?_s_id=cve
Products affected by CVE-2023-27425
-
cpe:2.3:a:electric_studio_client_login_project:electric_studio_client_login:-
-
cpe:2.3:a:electric_studio_client_login_project:electric_studio_client_login:0.5
-
cpe:2.3:a:electric_studio_client_login_project:electric_studio_client_login:0.7
-
cpe:2.3:a:electric_studio_client_login_project:electric_studio_client_login:0.7.1
-
cpe:2.3:a:electric_studio_client_login_project:electric_studio_client_login:0.7.5
-
cpe:2.3:a:electric_studio_client_login_project:electric_studio_client_login:0.7.6
-
cpe:2.3:a:electric_studio_client_login_project:electric_studio_client_login:0.7.7
-
cpe:2.3:a:electric_studio_client_login_project:electric_studio_client_login:0.8
-
cpe:2.3:a:electric_studio_client_login_project:electric_studio_client_login:0.8.1