Lucene search

PatchstackVULNRICHMENT:CVE-2023-47227

HistoryNov 08, 2023 - 6:42 p.m.

CVE-2023-47227 WordPress Social Feed | All social media in one place Plugin <= 1.5.4.6 is vulnerable to Cross Site Scripting (XSS)

2023-11-0818:42:08

CWE-79

Patchstack

github.com

wordpress

social feed

cross site scripting

vulnerability

web-settler

AI Score

5.7

Confidence

High

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Web-Settler Social Feed | All social media in one place plugin <= 1.5.4.6 versions.

References

patchstack.com/database/vulnerability/add-facebook/wordpress-social-feed-all-social-media-in-one-place-plugin-1-5-4-6-cross-site-scripting-xss-vulnerability?_s_id=cve