Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Michael Pretty (prettyboymp) CMS Press plugin <= 0.2.3 versions.
References
Link | Resource |
---|---|
https://patchstack.com/database/vulnerability/cms-press/wordpress-cms-press-plugin-0-2-3-cross-site-scripting-xss-vulnerability?_s_id=cve | Third Party Advisory |
Configurations
History
No history.
Information
Published : 2023-05-08 13:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-25452
Mitre link : CVE-2023-25452
CVE.ORG link : CVE-2023-25452
JSON object : View
Products Affected
cms_press_project
- cms_press
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')