Security Advisory

CVE-2023-2309

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-24 10:20:23

Last updated 2024-10-24 15:02:54

Assigner WPScan

State PUBLISHED

Description

The wpForo Forum WordPress plugin before 2.1.9 does not escape some request parameters while in debug mode, leading to a Reflected Cross-Site Scripting vulnerability.

← Browse all CVEs View on cve.org ↗