Lucene search
WPScanCVE-2023-4687HistoryOct 16, 2023 - 8:15 p.m.
CVE-2023-4687
2023-10-1620:15:16
WPScan
web.nvd.nist.gov
19
pagelayer
wordpress plugin
cve-2023-4687
security vulnerability
unauthenticated access
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
34.8%
The Page Builder: Pagelayer WordPress plugin before 1.7.7 doesn’t prevent unauthenticated attackers from updating a post’s header or footer code on scheduled posts.
Affected configurations
Node
pagelayerpagelayerRange<1.7.7wordpress
CNA Affected
[
{
"vendor": "Unknown",
"product": "Page Builder: Pagelayer",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "1.3.2",
"lessThan": "1.7.7"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
wpvulndb
wpvulndb
PageLayer < 1.7.7 - Unauthenticated Stored XSS
2023-09-25 00:00:00
cvelist
cvelist
CVE-2023-4687 PageLayer < 1.7.7 - Unauthenticated Stored XSS
2023-10-16 19:39:02
openvas
openvas
WordPress PageLayer Plugin < 1.7.7 XSS Vulnerability
2023-10-17 00:00:00
prion
prion
Code injection
2023-10-16 20:15:00
nvd
nvd
CVE-2023-4687
2023-10-16 20:15:16
wpexploit
wpexploit
PageLayer < 1.7.7 - Unauthenticated Stored XSS
2023-09-25 00:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
34.8%
Related for CVE-2023-4687