Количество 3
Количество 3
CVE-2023-2122
The Image Optimizer by 10web WordPress plugin before 1.0.27 does not sanitise and escape the iowd_tabs_active parameter before rendering it in the plugin admin panel, leading to a reflected Cross-Site Scripting vulnerability, allowing an attacker to trick a logged in admin to execute arbitrary javascript by clicking a link.
GHSA-fx9f-2mhx-34vx
The Image Optimizer by 10web WordPress plugin before 1.0.27 does not sanitise and escape the iowd_tabs_active parameter before rendering it in the plugin admin panel, leading to a reflected Cross-Site Scripting vulnerability, allowing an attacker to trick a logged in admin to execute arbitrary javascript by clicking a link.
BDU:2023-07338
Уязвимость плагина Image Optimizer by 10web системы управления содержимым сайта WordPress, позволяющая нарушителю проводить межсайтовые сценарные атаки
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-2122 The Image Optimizer by 10web WordPress plugin before 1.0.27 does not sanitise and escape the iowd_tabs_active parameter before rendering it in the plugin admin panel, leading to a reflected Cross-Site Scripting vulnerability, allowing an attacker to trick a logged in admin to execute arbitrary javascript by clicking a link. | CVSS3: 6.1 | 23% Средний | больше 2 лет назад |
| GHSA-fx9f-2mhx-34vx The Image Optimizer by 10web WordPress plugin before 1.0.27 does not sanitise and escape the iowd_tabs_active parameter before rendering it in the plugin admin panel, leading to a reflected Cross-Site Scripting vulnerability, allowing an attacker to trick a logged in admin to execute arbitrary javascript by clicking a link. | CVSS3: 6.1 | 23% Средний | больше 2 лет назад |
 | BDU:2023-07338 Уязвимость плагина Image Optimizer by 10web системы управления содержимым сайта WordPress, позволяющая нарушителю проводить межсайтовые сценарные атаки | CVSS3: 6.1 | 23% Средний | почти 3 года назад |
Уязвимостей на страницу