cve/CVE-2023-28664.md at 4cdc7cc63082b60e36d1d9d956509a405762a272

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

The Meta Data and Taxonomies Filter WordPress plugin, in versions < 1.3.1, is affected by a reflected cross-site scripting vulnerability in the 'tax_name' parameter of the mdf_get_tax_options_in_widget action, which can only be triggered by an authenticated user.

POC

Reference

https://www.tenable.com/security/research/tra-2023-3
https://www.tenable.com/security/research/tra-2023-3

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/JoshuaMart/JoshuaMart
https://github.com/karimhabush/cyberowl

985 B Raw Blame History

CVE-2023-28664

Description

POC

Reference

Github

985 B

Raw Blame History