Vulnerability Details CVE-2023-49771
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Peter Raschendorfer Smart External Link Click Monitor [Link Log] allows Reflected XSS.This issue affects Smart External Link Click Monitor [Link Log]: from n/a through 5.0.2.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.5%
CVSS Severity
CVSS v3 Score 7.1
References
- https://patchstack.com/database/vulnerability/link-log/wordpress-smart-external-link-click-monitor-link-log-plugin-5-0-2-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
- https://patchstack.com/database/vulnerability/link-log/wordpress-smart-external-link-click-monitor-link-log-plugin-5-0-2-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
Products affected by CVE-2023-49771
-
cpe:2.3:a:petersplugins:link_log:0.2.13
-
cpe:2.3:a:petersplugins:link_log:1.0
-
cpe:2.3:a:petersplugins:link_log:1.1
-
cpe:2.3:a:petersplugins:link_log:1.2
-
cpe:2.3:a:petersplugins:link_log:1.3
-
cpe:2.3:a:petersplugins:link_log:1.4
-
cpe:2.3:a:petersplugins:link_log:2.0
-
cpe:2.3:a:petersplugins:link_log:2.1
-
cpe:2.3:a:petersplugins:link_log:2.2
-
cpe:2.3:a:petersplugins:link_log:2.3
-
cpe:2.3:a:petersplugins:link_log:2.4
-
cpe:2.3:a:petersplugins:link_log:3
-
cpe:2.3:a:petersplugins:link_log:4
-
cpe:2.3:a:petersplugins:link_log:5