CVE-2023-34374

Name of the Vulnerable Software and Affected Versions Rahul Aryan AnsPress plugin versions <= 4.3.0

Description The issue is a Stored Cross-Site Scripting (XSS) vulnerability that affects authenticated users with editor or higher privileges. This vulnerability allows an attacker to inject malicious scripts into the application, potentially leading to unauthorized access or data theft. No information is provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited.

Recommendations For Rahul Aryan AnsPress plugin versions <= 4.3.0, update to a version higher than 4.3.0 to resolve the issue. At the moment, there is no information about other specific mitigation measures for this vulnerability.