Security Advisory

CVE-2023-1891

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-06-27 13:17:16

Last updated 2024-11-27 19:37:59

Assigner WPScan

State PUBLISHED

Description

The Accordion & FAQ WordPress plugin before 1.9.9 does not escape various generated URLs, before outputting them in attributes when some notices are displayed, leading to Reflected Cross-Site Scripting

← Browse all CVEs View on cve.org ↗