Vulnerabilities > CVE-2023-0733 - Unspecified vulnerability in Newsletter Popup Project Newsletter Popup

CVSS 6.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

newsletter-popup-project

NVD

Published: 2023-05-30

Updated: 2023-11-07

Summary

The Newsletter Popup WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks

Vulnerable Configurations

Part	Description	Count
Application	Newsletter_Popup_Project Newsletter Popup Project Newsletter Popup *	1

References

https://wpscan.com/vulnerability/fed1e184-ff56-44fe-9876-d17c0156447a