admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-08 22:18:22 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2023/CVE-2023-21xx/CVE-2023-2113.json

32 lines
961 B
JSON
Raw Normal View History

Auto-Update: 2023-05-30T10:00:25.876080+00:00
2023-05-30 10:00:29 +00:00
{
"id": "CVE-2023-2113",
"sourceIdentifier": "contact@wpscan.com",
"published": "2023-05-30T08:15:09.900",
Auto-Update: 2023-05-30T14:00:27.154349+00:00
2023-05-30 14:00:30 +00:00
"lastModified": "2023-05-30T12:52:56.613",
"vulnStatus": "Awaiting Analysis",
Auto-Update: 2023-05-30T10:00:25.876080+00:00
2023-05-30 10:00:29 +00:00
"descriptions": [
{
"lang": "en",
"value": "The Autoptimize WordPress plugin before 3.1.7 does not sanitise and escape the settings imported from a previous export, allowing high privileged users (such as an administrator) to inject arbitrary javascript into the admin panel, even when the unfiltered_html capability is disabled, such as in a multisite setup."
}
],
"metrics": {},
"weaknesses": [
{
"source": "contact@wpscan.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://wpscan.com/vulnerability/ddb4c95d-bbee-4095-aed6-25f6b8e63011",
"source": "contact@wpscan.com"
}
]
}
Reference in New Issue Copy Permalink