admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-01 11:11:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2023/CVE-2023-10xx/CVE-2023-1090.json

36 lines
1.1 KiB
JSON
Raw Normal View History

Auto-Update: 2023-05-02T10:00:24.586602+00:00
2023-05-02 12:00:27 +02:00
{
"id": "CVE-2023-1090",
"sourceIdentifier": "contact@wpscan.com",
"published": "2023-05-02T08:15:09.753",
Auto-Update: 2023-05-02T14:00:24.246120+00:00
2023-05-02 16:00:27 +02:00
"lastModified": "2023-05-02T12:56:12.940",
"vulnStatus": "Awaiting Analysis",
Auto-Update: 2023-05-02T10:00:24.586602+00:00
2023-05-02 12:00:27 +02:00
"descriptions": [
{
"lang": "en",
"value": "The SMTP Mailing Queue WordPress plugin before 2.0.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)"
}
],
"metrics": {},
"weaknesses": [
{
"source": "contact@wpscan.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://github.com/youki992/youki992.github.io/blob/master/others/apply.md",
"source": "contact@wpscan.com"
},
{
"url": "https://wpscan.com/vulnerability/d470dd6c-dcac-4a3e-b42a-2489a31aca45",
"source": "contact@wpscan.com"
}
]
}
Reference in New Issue Copy Permalink