One Article Review
| Source |  CVE Liste |
|---|---|
| Identifiant | 8318160 |
| Date de publication | 2023-03-13 17:15:12 (vue: 2023-03-13 19:07:12) |
| Titre | CVE-2023-0844 |
| Texte | The Namaste! LMS WordPress plugin before 2.6 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup). |
| Notes | |
| Envoyé | Oui |
| Condensat | 0844 2023 admin allow attacks before capability could cross cve disallowed does escape even example high html its lms multisite namaste not perform plugin privilege sanitize scripting settings setup site some stored such unfiltered users when which wordpress |
| Tags | |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.