CVEs-PoC/2023/CVE-2023-5348.md at efebdd4f2d72a3494ec92163e9e88e00a3646b8a

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-06-05 10:48:01 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

772 B

Raw Blame History

CVE-2023-5348

Description

The Product Catalog Mode For WooCommerce WordPress plugin before 5.0.3 does not properly authorize settings updates or escape settings values, leading to stored XSS by unauthenticated users.

POC

Reference

https://wpscan.com/vulnerability/b37b09c1-1b53-471c-9b10-7d2d05ae11f1

Github

https://github.com/20142995/nuclei-templates

772 B Raw Blame History

CVE-2023-5348

Description

POC

Reference

Github

772 B

Raw Blame History