Lucene search
PRIOn knowledge basePRION:CVE-2023-30777HistoryMay 10, 2023 - 6:15 a.m.
Cross site scripting
2023-05-1006:15:00
PRIOn knowledge base
www.prio-n.com
7
vulnerability
xss
wp engine
advanced custom fields
unauthenticated
0.006 Low
EPSS
Percentile
78.4%
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WP Engine Advanced Custom Fields Pro, WP Engine Advanced Custom Fields plugins <= 6.1.5 versions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| advanced_custom_fields | lt | 6.1.6 | |
| advanced_custom_fields | lt | 6.1.6 |
References
patchstack.com/articles/reflected-xss-in-advanced-custom-fields-plugins-affecting-2-million-sites?_s_id=cve
patchstack.com/database/vulnerability/advanced-custom-fields-pro/wordpress-advanced-custom-fields-pro-plugin-6-1-5-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
patchstack.com/database/vulnerability/advanced-custom-fields/wordpress-advanced-custom-fields-plugin-6-1-5-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
Related
wpvulndb
wpvulndb
Advanced Custom Fields < 6.1.6 - Reflected XSS
2023-05-04 00:00:00
openvas
openvas
WordPress Advanced Custom Fields Plugin 5.8.10 < 5.12.6 XSS Vulnerability
2024-01-09 00:00:00
WordPress Advanced Custom Fields Plugin < 6.1.6 XSS Vulnerability
2023-05-08 00:00:00
WordPress Advanced Custom Fields Pro Plugin < 6.1.6 XSS Vulnerability
2024-01-09 00:00:00
cvelist
cvelist
cve
cve
CVE-2023-30777
2023-05-10 06:15:18
nuclei
nuclei
Advanced Custom Fields < 6.1.6 - Cross-Site Scripting
2023-07-07 09:38:49
githubexploit
githubexploit
nvd
nvd
CVE-2023-30777
2023-05-10 06:15:18
wpexploit
wpexploit
Advanced Custom Fields < 6.1.6 - Reflected XSS
2023-05-04 00:00:00
thn
thn
wordfence
wordfence