Vulnerabilities > CVE-2023-47182 - Unspecified vulnerability in Nazmulhossainnihal Login Screen Manager 3.5.2

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

nazmulhossainnihal

NVD

Published: 2023-11-06

Updated: 2024-11-21

Summary

Cross-Site Request Forgery (CSRF) leading to a Stored Cross-Site Scripting (XSS) vulnerability in Nazmul Hossain Nihal Login Screen Manager plugin <= 3.5.2 versions.

Vulnerable Configurations

Part	Description	Count
Application	Nazmulhossainnihal Nazmulhossainnihal Login Screen Manager 3.5.2	1

References

https://patchstack.com/database/vulnerability/login-screen-manager/wordpress-login-screen-manager-plugin-3-5-2-unauth-stored-cross-site-scripting-xss-via-csrf-vulnerability?_s_id=cve
https://patchstack.com/database/vulnerability/login-screen-manager/wordpress-login-screen-manager-plugin-3-5-2-unauth-stored-cross-site-scripting-xss-via-csrf-vulnerability?_s_id=cve