First published: Fri May 12 2023(Updated: )
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin <= v2.2 versions.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
Tipsandtricks-hq Category Specific Rss Feed Subscription | <=2.2 |
Update to v2.3 or a higher version.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this vulnerability is CVE-2023-22685.
The title of this vulnerability is Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Tips and Tricks HQ Ruhul Amin Category Specific RSS feed Subscription plugin.
The severity of CVE-2023-22685 is medium, with a CVSS score of 4.8.
The affected software is Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin version up to and including v2.2.
To fix the CVE-2023-22685 vulnerability, you should update the Tips and Tricks HQ, Ruhul Amin Category Specific RSS feed Subscription plugin to a version above v2.2.