Security Vulnerabilities - CVEs Published In October 2023
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Timely - Appointment software Timely Booking Button plugin <= 2.0.2 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-10-16
Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in Codedrafty Mediabay – Media Library Folders plugin <= 1.6 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-10-16
Cross-Site Request Forgery (CSRF) vulnerability in Gilles Dumas which template file plugin <= 4.6.0 versions.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-10-16
Cross-Site Request Forgery (CSRF) vulnerability in Taggbox plugin <= 2.9 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-10-16
Cross-Site Request Forgery (CSRF) vulnerability in Pixelative, Mohsin Rafique AMP WP – Google AMP For WordPress plugin <= 1.5.15 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-10-16
Cross-Site Request Forgery (CSRF) vulnerability in XYDAC Ultimate Taxonomy Manager plugin <= 2.0 versions.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-10-16
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Gopi Ramasamy Tiny Carousel Horizontal Slider plugin <= 8.1 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-10-16
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Robin Wilson bbp style pack plugin <= 5.6.7 versions.
CVSS Score
6.5
EPSS Score
0.002
Published
2023-10-16
Auth. (contributo+) Stored Cross-Site Scripting (XSS) vulnerability in Cytech BuddyMeet plugin <= 2.2.0 versions.
CVSS Score
6.5
EPSS Score
0.002
Published
2023-10-16
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Tyche Softwares Abandoned Cart Lite for WooCommerce plugin <= 5.15.2 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-10-16