Unauth. Reflected Cross-Site Scripting (XSS) vulnerability (requires PHP 8.x) in CodeBard CodeBard's Patron Button and Widgets for Patreon plugin <= 2.1.9 versions.
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2023, 20:33
Type | Values Removed | Values Added |
---|---|---|
First Time |
Codebard patron Button And Widgets For Patreon
Codebard |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.1 |
CPE | cpe:2.3:a:codebard:patron_button_and_widgets_for_patreon:*:*:*:*:*:wordpress:*:* | |
References | () https://patchstack.com/database/vulnerability/patron-button-and-widgets-by-codebard/wordpress-codebard-s-patron-button-and-widgets-for-patreon-plugin-2-1-9-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve - Third Party Advisory |
14 Nov 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-14 22:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-47524
Mitre link : CVE-2023-47524
CVE.ORG link : CVE-2023-47524
JSON object : View
Products Affected
codebard
- patron_button_and_widgets_for_patreon
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')