cve/CVE-2023-2123.md at 71b0cee710ed54e668d68c977dc8a01eece35241

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 03:02:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

913 B

Raw Blame History

CVE-2023-2123

Description

The WP Inventory Manager WordPress plugin before 2.1.0.13 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting.

POC

Reference

https://github.com/daniloalbuqrque/poc-cve-xss-encoded-wp-inventory-manager-plugin
https://wpscan.com/vulnerability/44448888-cd5d-482e-859e-123e442ce5c1

Github

https://github.com/0xn4d/poc-cve-xss-encoded-wp-inventory-manager-plugin
https://github.com/nomi-sec/PoC-in-GitHub

913 B Raw Blame History

CVE-2023-2123

Description

POC

Reference

Github

913 B

Raw Blame History