Vulnerabilities > CVE-2023-1891 - Unspecified vulnerability in Helpiewp Accordion & FAQ

CVSS 6.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

helpiewp

NVD

Published: 2023-06-27

Updated: 2023-11-07

Summary

The Accordion & FAQ WordPress plugin before 1.9.9 does not escape various generated URLs, before outputting them in attributes when some notices are displayed, leading to Reflected Cross-Site Scripting

Vulnerable Configurations

Part	Description	Count
Application	Helpiewp Helpiewp Accordion & FAQ 0.1 Helpiewp Accordion & FAQ 0.2 Helpiewp Accordion & FAQ 0.3 Helpiewp Accordion & FAQ 0.4 Helpiewp Accordion & FAQ 0.5 Helpiewp Accordion & FAQ 0.6 Helpiewp Accordion & FAQ 0.7 Helpiewp Accordion & FAQ 0.7.1 Helpiewp Accordion & FAQ 0.7.2 Helpiewp Accordion & FAQ 0.7.3 Helpiewp Accordion & FAQ 0.7.4 Helpiewp Accordion & FAQ 0.7.5 Helpiewp Accordion & FAQ 0.7.6 Helpiewp Accordion & FAQ 0.7.7 Helpiewp Accordion & FAQ 0.7.8 Helpiewp Accordion & FAQ 0.7.9 Helpiewp Accordion & FAQ 0.8 Helpiewp Accordion & FAQ 0.8.1 Helpiewp Accordion & FAQ 0.8.2 Helpiewp Accordion & FAQ 0.8.4 Helpiewp Accordion & FAQ 0.9 Helpiewp Accordion & FAQ 1.0 Helpiewp Accordion & FAQ 1.1 Helpiewp Accordion & FAQ 1.2 Helpiewp Accordion & FAQ 1.3 Helpiewp Accordion & FAQ 1.3.1 Helpiewp Accordion & FAQ 1.4 Helpiewp Accordion & FAQ 1.4.1 Helpiewp Accordion & FAQ 1.4.2 Helpiewp Accordion & FAQ 1.4.3 Helpiewp Accordion & FAQ 1.4.4 Helpiewp Accordion & FAQ 1.5 Helpiewp Accordion & FAQ 1.5.1 Helpiewp Accordion & FAQ 1.5.2 Helpiewp Accordion & FAQ 1.5.3 Helpiewp Accordion & FAQ 1.5.4 Helpiewp Accordion & FAQ 1.5.5 Helpiewp Accordion & FAQ 1.6 Helpiewp Accordion & FAQ 1.6.1 Helpiewp Accordion & FAQ 1.6.2 Helpiewp Accordion & FAQ 1.6.3 Helpiewp Accordion & FAQ 1.6.4 Helpiewp Accordion & FAQ 1.6.6 Helpiewp Accordion & FAQ 1.6.7 Helpiewp Accordion & FAQ 1.6.8 Helpiewp Accordion & FAQ 1.6.9 Helpiewp Accordion & FAQ 1.6.10 Helpiewp Accordion & FAQ 1.6.11 Helpiewp Accordion & FAQ 1.6.12 Helpiewp Accordion & FAQ 1.7 Helpiewp Accordion & FAQ 1.7.1 Helpiewp Accordion & FAQ 1.7.2 Helpiewp Accordion & FAQ 1.7.3 Helpiewp Accordion & FAQ 1.7.3.1 Helpiewp Accordion & FAQ 1.7.3.2 Helpiewp Accordion & FAQ 1.7.3.3 Helpiewp Accordion & FAQ 1.7.4 Helpiewp Accordion & FAQ 1.7.5 Helpiewp Accordion & FAQ 1.7.6 Helpiewp Accordion & FAQ 1.7.7 Helpiewp Accordion & FAQ 1.7.8 Helpiewp Accordion & FAQ 1.7.9 Helpiewp Accordion & FAQ 1.7.10 Helpiewp Accordion & FAQ 1.7.11 Helpiewp Accordion & FAQ 1.8 Helpiewp Accordion & FAQ 1.8.1 Helpiewp Accordion & FAQ 1.8.2 Helpiewp Accordion & FAQ 1.9 Helpiewp Accordion & FAQ 1.9.1 Helpiewp Accordion & FAQ 1.9.2 Helpiewp Accordion & FAQ 1.9.3 Helpiewp Accordion & FAQ 1.9.4 Helpiewp Accordion & FAQ 1.9.5 Helpiewp Accordion & FAQ 1.9.6 Helpiewp Accordion & FAQ 1.9.7 Helpiewp Accordion & FAQ 1.9.8	76

References

https://wpscan.com/vulnerability/4e5d993f-cc20-4b5f-b4c8-c13004151828