CVE-2023-47240: WordPress CBX Map for Google Map & OpenStreetMap Plugin <= 1.1.11 is vulnerable to Cross Site Scripting (XSS)
First published: Thu Nov 16 2023(Updated: )
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Codeboxr CBX Map for Google Map & OpenStreetMap plugin <= 1.1.11 versions.
Credit: audit@patchstack.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Codebxr Cbx Map For Google Map \& Openstreetmap | <=1.1.11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this WordPress plugin vulnerability?
The vulnerability ID for this WordPress plugin vulnerability is CVE-2023-47240.
What is the severity of CVE-2023-47240?
The severity of CVE-2023-47240 is medium with a CVSS score of 6.5.
What is the affected software of CVE-2023-47240?
The affected software of CVE-2023-47240 is Codeboxr CBX Map for Google Map & OpenStreetMap plugin version 1.1.11 and below.
How does CVE-2023-47240 impact WordPress websites?
CVE-2023-47240 allows attackers to perform stored cross-site scripting (XSS) attacks on WordPress websites using the vulnerable Codeboxr CBX Map for Google Map & OpenStreetMap plugin.
Is there a patch or fix available for CVE-2023-47240?
Yes, a patch is available for CVE-2023-47240. It is recommended to update the Codeboxr CBX Map for Google Map & OpenStreetMap plugin to version 1.1.12 or higher.
- collector/nvd-api
- agent/title
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/codebxr
- canonical/codebxr cbx map for google map \& openstreetmap
- version/codebxr cbx map for google map \& openstreetmap/1.1.11