Vulnerability Details CVE-2023-40560
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Greg Ross Schedule Posts Calendar plugin <= 5.2 versions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.5%
CVSS Severity
CVSS v3 Score 5.9
References
Products affected by CVE-2023-40560
-
cpe:2.3:a:toolstack:schedule_posts_calendar:1.0
-
cpe:2.3:a:toolstack:schedule_posts_calendar:1.1
-
cpe:2.3:a:toolstack:schedule_posts_calendar:2.0
-
cpe:2.3:a:toolstack:schedule_posts_calendar:2.1
-
cpe:2.3:a:toolstack:schedule_posts_calendar:3.0
-
cpe:2.3:a:toolstack:schedule_posts_calendar:3.1
-
cpe:2.3:a:toolstack:schedule_posts_calendar:3.2
-
cpe:2.3:a:toolstack:schedule_posts_calendar:3.3
-
cpe:2.3:a:toolstack:schedule_posts_calendar:3.4
-
cpe:2.3:a:toolstack:schedule_posts_calendar:3.5
-
cpe:2.3:a:toolstack:schedule_posts_calendar:3.6
-
cpe:2.3:a:toolstack:schedule_posts_calendar:4.0
-
cpe:2.3:a:toolstack:schedule_posts_calendar:4.1
-
cpe:2.3:a:toolstack:schedule_posts_calendar:4.2
-
cpe:2.3:a:toolstack:schedule_posts_calendar:4.3
-
cpe:2.3:a:toolstack:schedule_posts_calendar:5.0
-
cpe:2.3:a:toolstack:schedule_posts_calendar:5.1
-
cpe:2.3:a:toolstack:schedule_posts_calendar:5.2