CVE-2023-0764

CVSS V2 None CVSS V3 None
Description
The Gallery by BestWebSoft WordPress plugin before 4.7.0 does not perform proper sanitization of gallery information, leading to a Stored Cross-Site Scription vulnerability. The attacker must have at least the privileges of the Author role.
Overview
  • CVE ID
  • CVE-2023-0764
  • Assigner
  • contact@wpscan.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-04-17T13:15:37
  • Last Modified Date
  • 2023-04-25T19:29:19
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:bestwebsoft:gallery:*:*:*:*:*:wordpress:*:* 1 OR 4.7.0
History
Created Old Value New Value Data Type Notes
2023-04-17 14:02:19 Added to TrackCVE
2023-04-17 14:02:22 Weakness Enumeration new
2023-04-17 15:00:42 2023-04-17T14:06:26 CVE Modified Date updated
2023-04-17 15:00:42 Received Awaiting Analysis Vulnerability Status updated
2023-04-21 13:00:43 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-04-25 20:01:19 2023-04-25T19:29:19 CVE Modified Date updated
2023-04-25 20:01:20 Undergoing Analysis Analyzed Vulnerability Status updated
2023-04-25 20:01:25 CPE Information updated