NA

CVE-2023-5343

Published: 20/11/2023 Updated: 27/11/2023
CVSS v3 Base Score: 4.8 | Impact Score: 2.7 | Exploitability Score: 1.7
VMScore: 0

Vulnerability Summary

The Popup box WordPress plugin prior to 3.7.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed.

Vulnerable Product Search on Vulmon Subscribe to Product

ays-pro popup box