PT-2023-24842 · WordPress · Kanban For Wordpress
Tomasz Staszyszyn
+1
·
Published
2023-06-22
·
Updated
2023-06-28
·
CVE-2023-34368
CVSS v3.1
5.9
Medium
| Vector | AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
Kanban for WordPress Kanban Boards for WordPress plugin versions prior to 2.5.21
Description
A Stored Cross-Site Scripting (XSS) vulnerability exists, allowing authentication bypass for admin+ users.
Recommendations
For versions prior to 2.5.21, update to version 2.5.21 or later to resolve the issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Kanban For Wordpress