Vulnerabilities > CVE-2023-1119

047910
CVSS 6.1 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
srbtranslatin-project
updraftplus
NVD
Published: 2023-07-10
Updated: 2023-11-07

Summary

The WP-Optimize WordPress plugin before 3.2.13, SrbTransLatin WordPress plugin before 2.4.1 use a third-party library that removes the escaping on some HTML characters, leading to a cross-site scripting vulnerability.

Vulnerable Configurations

Part Description Count
Application
Srbtranslatin_Project
46
Application
Updraftplus
72

References