CVE-2023-47184 WordPress Admin Bar & Dashboard Access Control Plugin <= 1.2.8 is vulnerable to Cross Site Scripting (XSS)

2023-11-0609:56:40

CWE-79

Patchstack

www.cve.org

cve-2023-47184

cross site scripting

authenticated

stored

vulnerable

wordpress

admin bar

dashboard access control

proper fraction llc

0.0004 Low

EPSS

Percentile

14.0%

JSON

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Proper Fraction LLC. Admin Bar & Dashboard Access Control plugin <= 1.2.8 versions.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Admin Bar & Dashboard Access Control",
    "vendor": "Proper Fraction LLC.",
    "versions": [
      {
        "changes": [
          {
            "at": "1.2.9",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "1.2.8",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

References

patchstack.com/database/vulnerability/admin-bar-dashboard-control/wordpress-admin-bar-dashboard-access-control-plugin-1-2-8-cross-site-scripting-xss-vulnerability?_s_id=cve

0.0004 Low

EPSS

Percentile

14.0%

JSON

Related for CVELIST:CVE-2023-47184