Security Advisory

CVE-2023-1373

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-17 12:17:43

Last updated 2025-02-06 16:18:40

Assigner WPScan

State PUBLISHED

Description

The W4 Post List WordPress plugin before 2.4.6 does not escape some URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting

← Browse all CVEs View on cve.org ↗