Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Marco Milesi ANAC XML Bandi di Gara plugin <= 7.5 versions.
References
Configurations
History
22 Nov 2023, 00:08
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:marcomilesi:anac_xml_bandi_di_gara:*:*:*:*:*:wordpress:*:* | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.4 |
| First Time |
Marcomilesi anac Xml Bandi Di Gara
Marcomilesi |
|
| References | () https://patchstack.com/database/vulnerability/avcp/wordpress-anac-xml-bandi-di-gara-plugin-7-5-cross-site-scripting-xss-vulnerability?_s_id=cve - Third Party Advisory |
16 Nov 2023, 20:03
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-11-16 19:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-47242
Mitre link : CVE-2023-47242
CVE.ORG link : CVE-2023-47242
JSON object : View
Products Affected
marcomilesi
- anac_xml_bandi_di_gara
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')