We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2023-47182

WordPress Login Screen Manager Plugin <= 3.5.2 is vulnerable to Cross Site Scripting (XSS)



AssignerPatchstack
Reserved2023-10-31
Published2023-11-06
Updated2024-09-05

Description

Cross-Site Request Forgery (CSRF) leading to a Stored Cross-Site Scripting (XSS) vulnerability in Nazmul Hossain Nihal Login Screen Manager plugin <= 3.5.2 versions.

Problem types

CWE-352 Cross-Site Request Forgery (CSRF)

Product status

Default status
0x400043aca0

Any version
affected

Credits

Nano (Patchstack Alliance) 0x400043ade0

References

https://patchstack.com/database/vulnerability/login-screen-manager/wordpress-login-screen-manager-plugin-3-5-2-unauth-stored-cross-site-scripting-xss-via-csrf-vulnerability?_s_id=cve vdb-entry

cve.org CVE-2023-47182

nvd.nist.gov CVE-2023-47182

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2023-47182
Subscribe to our newsletter to learn more about our work.