Security Vulnerabilities - CVEs Published In April 2023
Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-04-07
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Go Prayer WP Prayer plugin <= 1.9.6 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-04-07
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WPGlobus WPGlobus Translate Options plugin <= 2.1.0 versions.
CVSS Score
5.8
EPSS Score
0.001
Published
2023-04-07
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WP-Buddy Google Analytics Opt-Out plugin <= 2.3.4 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-04-07
Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 versions.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-04-07
Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in PI Websolution Product page shipping calculator for WooCommerce plugin <= 1.3.20 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-04-07
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Contact Form plugin <= 8.0.3.1 versions.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-04-07
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Marcel Bootsman Auto Hide Admin Bar plugin <= 1.6.1 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-04-07
Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.1.1 versions.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-04-07
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.1 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-04-07