CVE-2023-45764: WordPress Scroll post excerpt Plugin <= 8.0 is vulnerable to Cross Site Scripting (XSS)
First published: Tue Oct 24 2023(Updated: )
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Gopi Ramasamy Scroll post excerpt plugin <= 8.0 versions.
Credit: audit@patchstack.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| <=8.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the CVE ID of this vulnerability?
The CVE ID of this vulnerability is CVE-2023-45764.
What is the title of this vulnerability?
The title of this vulnerability is Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Gopi Ramasamy Scroll post excerpt …
What is the affected software in this vulnerability?
The affected software in this vulnerability is Gopiplus Scroll Post Excerpt plugin versions <= 8.0.
What is the severity of CVE-2023-45764?
The severity of CVE-2023-45764 is medium (4.8).
How do I fix the Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Gopi Ramasamy Scroll post excerpt plugin?
To fix the vulnerability, update Gopi Ramasamy Scroll post excerpt plugin to version 8.1 or higher.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/title
- agent/weakness
- agent/author
- agent/description
- agent/first-publish-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/softwarecombine
- agent/event
- agent/tags
- agent/source
- vendor/gopiplus
- canonical/gopiplus scroll post excerpt
- version/gopiplus scroll post excerpt/8.0