Totally Secure

Security Information and News

NVD NVD Nist GOV

NVD – CVE-2023-1804

ByTotally Secure

May 8, 2023
Changed Description 
The Product Catalog Feed by PixelYourSite WordPress plugin before 2.1.1 does not sanitise and escape the edit parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
The Product Catalog Feed by PixelYourSite WordPress plugin before 2.1.1 does not sanitise and escape the edit parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as administrators.

By Totally Secure

Related Post

NVD NVD Nist GOV

NVD – CVE-2017-20187

Nov 7, 2023 Totally Secure
NVD NVD Nist GOV

NVD – CVE-2017-7252

Nov 7, 2023 Totally Secure
NVD NVD Nist GOV

NVD – CVE-2018-25092

Nov 7, 2023 Totally Secure

You missed

CISA Bulletins Security US Cert

Vulnerability Summary for the Week of September 16, 2024

September 24, 2024 Totally Secure
CISA Bulletins Security US Cert

Vulnerability Summary for the Week of September 9, 2024

September 17, 2024 Totally Secure
CISA Bulletins Security US Cert

Vulnerability Summary for the Week of September 2, 2024

September 10, 2024 Totally Secure
CISA Bulletins Security US Cert

Vulnerability Summary for the Week of August 26, 2024

September 4, 2024 Totally Secure