Vulnerability Details CVE-2023-30473
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Maxim Glazunov YML for Yandex Market plugin <= 3.10.7 versions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.1%
CVSS Severity
CVSS v3 Score 7.1
References
- https://patchstack.com/database/vulnerability/yml-for-yandex-market/wordpress-yml-for-yandex-market-plugin-3-10-7-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
- https://patchstack.com/database/vulnerability/yml-for-yandex-market/wordpress-yml-for-yandex-market-plugin-3-10-7-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
Products affected by CVE-2023-30473
-
cpe:2.3:a:icopydoc:yml_for_yandex_market:-
-
cpe:2.3:a:icopydoc:yml_for_yandex_market:3.10.0
-
cpe:2.3:a:icopydoc:yml_for_yandex_market:3.7.0
-
cpe:2.3:a:icopydoc:yml_for_yandex_market:3.7.17
-
cpe:2.3:a:icopydoc:yml_for_yandex_market:3.8.0
-
cpe:2.3:a:icopydoc:yml_for_yandex_market:3.8.18
-
cpe:2.3:a:icopydoc:yml_for_yandex_market:3.9.0
-
cpe:2.3:a:icopydoc:yml_for_yandex_market:3.9.5