Lucene search
HistoryNov 30, 2023 - 5:15 p.m.
CVE-2023-48321
cross-site scripting
web page generation
cve-2023-48321
ahmed kaludi
mohammed kaludi
amp for wp
accelerated mobile pages
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0
Percentile
14.0%
Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Ahmed Kaludi, Mohammed Kaludi AMP for WP – Accelerated Mobile Pages allows Stored XSS.This issue affects AMP for WP – Accelerated Mobile Pages: from n/a through 1.0.88.1.
Affected configurations
Node
magazine3amp_for_wpRange≤1.0.88.1wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| magazine3 | amp_for_wp | * | cpe:2.3:a:magazine3:amp_for_wp:*:*:*:*:*:wordpress:*:* |
Related
prion
prion
Cross site scripting
2023-11-30 17:15:00
wpvulndb
wpvulndb
cve
cve
CVE-2023-48321
2023-11-30 17:15:12
openvas
openvas
WordPress Accelerated Mobile Pages Plugin < 1.0.89 XSS Vulnerability
2023-12-04 00:00:00
cvelist
cvelist
wordfence
wordfence
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0
Percentile
14.0%
Related for NVD:CVE-2023-48321