Untriaged
Permalink
CVE-2023-28778
5.9 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): HIGH
- User interaction (UI): REQUIRED
- Scope (S): CHANGED
- Confidentiality impact (C): LOW
- Integrity impact (I): LOW
- Availability impact (A): LOW
WordPress Pagination by BestWebSoft Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in BestWebSoft Pagination plugin <= 1.2.2 versions.
References
- https://patchstack.com/database/vulnerability/pagination/wordpress-pagination-b… vdb-entry
- https://patchstack.com/database/vulnerability/pagination/wordpress-pagination-b… x_transferred vdb-entry
- https://patchstack.com/database/vulnerability/pagination/wordpress-pagination-b… vdb-entry
- https://patchstack.com/database/vulnerability/pagination/wordpress-pagination-b… x_transferred vdb-entry
Affected products
pagination
- =<1.2.2
Matching in nixpkgs
pkgs.haskellPackages.pagination
Framework-agnostic pagination boilerplate
-
nixos-unstable -
- nixpkgs-unstable 0.2.2
pkgs.haskellPackages.servant-pagination
Type-safe pagination for Servant APIs
-
nixos-unstable -
- nixpkgs-unstable 2.5.1
pkgs.haskellPackages.persistent-pagination
Efficient and correct pagination for persistent or esqueleto queries
-
nixos-unstable -
- nixpkgs-unstable 0.1.1.2
pkgs.python312Packages.django-ninja-cursor-pagination
Django Ninja extension for cursor-based pagination
-
nixos-unstable -
- nixpkgs-unstable 0.1.0
pkgs.python313Packages.django-ninja-cursor-pagination
Django Ninja extension for cursor-based pagination
-
nixos-unstable -
- nixpkgs-unstable 0.1.0
Package maintainers
-
@Defelo Defelo