Lucene search
PatchstackCVE-2023-39992HistorySep 04, 2023 - 11:15 a.m.
CVE-2023-39992
2023-09-0411:15:41
CWE-79
Patchstack
web.nvd.nist.gov
69
cve-2023-39992
unauthenticated
reflected
cross-site scripting
xss
vcita.com
online booking
scheduling calendar
wordpress
vcita plugin
nvd
CVSS3
7.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
AI Score
6.1
Confidence
High
EPSS
0.001
Percentile
27.9%
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in vCita.Com Online Booking & Scheduling Calendar for WordPress by vcita plugin <=Β 4.3.2 versions.
Affected configurations
Node
vcitaonline_booking_\&_scheduling_calendar_for_wordpress_by_vcitaRange<4.3.3wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| vcita | online_booking_\&_scheduling_calendar_for_wordpress_by_vcita | * | cpe:2.3:a:vcita:online_booking_\&_scheduling_calendar_for_wordpress_by_vcita:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "meeting-scheduler-by-vcita",
"product": "Online Booking & Scheduling Calendar for WordPress by vcita",
"vendor": "vCita.com",
"versions": [
{
"changes": [
{
"at": "4.3.3",
"status": "unaffected"
}
],
"lessThanOrEqual": "4.3.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-39992
2023-09-04 11:15:41
prion
prion
Cross site scripting
2023-09-04 11:15:00
wpvulndb
wpvulndb
cvelist
cvelist
wordfence
wordfence
CVSS3
7.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
AI Score
6.1
Confidence
High
EPSS
0.001
Percentile
27.9%
Related for CVE-2023-39992