“Never Assume Anything” – Unauthenticated Stored Cross-Site Scripting Vulnerability Exposed in 14 Email Logging Plugins
Tags
attack-pattern: Exploits - T1587.004 Exploits - T1588.005 Vulnerabilities - T1588.006 Scripting - T1064 Scripting
Show in Graph
Common Information
Type Value
UUID 93b7f689-a7a0-42f2-a208-aa0634398825
Fingerprint acb19916c974a588
Analysis status DONE
Considered CTI value 2
Text language
Published July 18, 2023, 4:40 p.m.
Added to db Aug. 13, 2023, 9:13 a.m.
Last updated Sept. 5, 2024, 12:32 a.m.
Headline “Never Assume Anything” – Unauthenticated Stored Cross-Site Scripting Vulnerability Exposed in 14 Email Logging Plugins
Title “Never Assume Anything” – Unauthenticated Stored Cross-Site Scripting Vulnerability Exposed in 14 Email Logging Plugins
Detected Hints/Tags/Attributes 23/1/14
Source URLs
Redirection Url
Details Source https://www.wordfence.com/blog/2023/07/never-assume-anything-unauthenticated-stored-cross-site-scripting-vulnerability-exposed-in-14-email-logging-plugins/
URL Provider
Details Provider Source level domain
Details wordfence.com www.wordfence.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 399 Blog - Wordfence https://www.wordfence.com/blog/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 9 
cve-2023-3080
Details CVE 6 
cve-2023-3081
Details CVE 6 
cve-2023-3082
Details CVE 5 
cve-2023-3088
Details CVE 6 
cve-2023-3087
Details CVE 5 
cve-2023-3092
Details CVE 7 
cve-2023-3093
Details CVE 5 
cve-2023-3122
Details CVE 5 
cve-2023-3135
Details CVE 2 
cve-2023-3136
Details CVE 5 
cve-2023-3158
Details CVE 5 
cve-2023-3166
Details CVE 4 
cve-2023-3167
Details CVE 4 
cve-2023-3168