Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Icegram Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building allows Stored XSS.This issue affects Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building: from n/a through 3.1.19.
References
Configurations
History
21 Nov 2024, 08:38
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
References | () https://patchstack.com/database/vulnerability/icegram/wordpress-icegram-engage-plugin-3-1-19-cross-site-scripting-xss-vulnerability?_s_id=cve - Third Party Advisory |
06 Feb 2024, 17:24
Type | Values Removed | Values Added |
---|---|---|
First Time |
Icegram
Icegram icegram Engage |
|
CPE | cpe:2.3:a:icegram:icegram_engage:*:*:*:*:*:wordpress:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.4 |
References | () https://patchstack.com/database/vulnerability/icegram/wordpress-icegram-engage-plugin-3-1-19-cross-site-scripting-xss-vulnerability?_s_id=cve - Third Party Advisory |
01 Feb 2024, 11:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-02-01 11:15
Updated : 2024-11-21 08:38
NVD link : CVE-2023-51532
Mitre link : CVE-2023-51532
CVE.ORG link : CVE-2023-51532
JSON object : View
Products Affected
icegram
- icegram_engage
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')