Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in CreativeMindsSolutions CM On Demand Search And Replace plugin <= 1.3.0 versions.
References
Configurations
History
23 Aug 2023, 16:45
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://patchstack.com/database/vulnerability/cm-on-demand-search-and-replace/wordpress-cm-on-demand-search-and-replace-plugin-1-3-0-cross-site-scripting-xss-vulnerability?_s_id=cve - Third Party Advisory | |
CPE | cpe:2.3:a:cminds:cm_on_demand_search_and_replace:*:*:*:*:*:wordpress:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.8 |
First Time |
Cminds cm On Demand Search And Replace
Cminds |
18 Aug 2023, 13:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-08-18 13:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-31228
Mitre link : CVE-2023-31228
CVE.ORG link : CVE-2023-31228
JSON object : View
Products Affected
cminds
- cm_on_demand_search_and_replace
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')