CVE-2023-5496

Name of the Vulnerable Software and Affected Versions Translator PoqDev Add-On version 1.0.11

Description A vulnerability was found in the Select Text Handler component, leading to cross site scripting. The attack may be initiated remotely, with a rather high complexity and difficult exploitation. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Recommendations For Translator PoqDev Add-On version 1.0.11, consider disabling the Select Text Handler component until a patch is available to prevent cross site scripting attacks. Restrict access to the component to minimize the risk of exploitation. Avoid using the add-on until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.