cve/CVE-2023-4925.md at dd6a10065df501f0a524d47b55e162f16811ba93

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 4edef1e4c8 Update CVE sources 2024-05-28 08:49

2024-05-28 08:49:17 +00:00

Description

The Easy Forms for Mailchimp WordPress plugin through 6.8.10 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed

POC

Reference

https://wpscan.com/vulnerability/0b094cba-9288-4c9c-87a9-bdce286fe8b6

Github

https://github.com/afine-com/research

798 B Raw Blame History

CVE-2023-4925

Description

POC

Reference

Github

798 B

Raw Blame History