Lucene search
JoomlaCVE-2023-40627HistoryDec 14, 2023 - 9:15 a.m.
CVE-2023-40627
2023-12-1409:15:41
CWE-79
Joomla
web.nvd.nist.gov
18
cve-2023-40627
reflected xss
vulnerability
joomla
livingword
nvd
security
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.0%
A reflected XSS vulnerability was discovered in the LivingWord component for Joomla.
Affected configurations
Node
mlwebtechnologieslivingwordRange1.0.0–3.0.0joomla\!
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mlwebtechnologies | livingword | * | cpe:2.3:a:mlwebtechnologies:livingword:*:*:*:*:*:joomla\!:*:* |
CNA Affected
[
{
"collectionURL": "https://extensions.joomla.org/extension/livingword/",
"defaultStatus": "unaffected",
"packageName": "com_livingword",
"product": "LivingWord component for Joomla",
"vendor": "https://github.com/MLWebTechnologies",
"versions": [
{
"status": "affected",
"version": "1.0.0-3.0.0"
}
]
}
]Related
nvd
nvd
CVE-2023-40627
2023-12-14 09:15:41
osv
osv
CVE-2023-40627
2023-12-14 09:15:41
cvelist
cvelist
prion
prion
Cross site scripting
2023-12-14 09:15:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.0%
Related for CVE-2023-40627