CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-5167

The User Activity Log Pro WordPress plugin before 2.3.4 does not properly escape recorded User-Agents in the user activity logs dashboard, which may allow visitors to conduct Stored Cross-Site Scripting attacks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.7%

CVSS Severity

CVSS v3 Score 5.4

References

https://wpscan.com/vulnerability/78ea6fe0-5fac-4923-949c-023c85fe2437
https://wpscan.com/vulnerability/78ea6fe0-5fac-4923-949c-023c85fe2437

Products affected by CVE-2023-5167

Solwininfotech » User Activity Log » Version: Any

cpe:2.3:a:solwininfotech:user_activity_log:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-5167

Products

Pricing

Contact Us