CVE-2023-1119

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Jul 10, 2023

Updated: Jan 6, 2025

Summary

CVE-2023-1119 refers to a cross-site scripting (XSS) vulnerability affecting the WP-Optimize plugin before version 3.2.13 and SrbTransLatin plugin before version 2.4.1 for WordPress. These plugins utilize a third-party library that fails to properly escape certain HTML characters, allowing an attacker to inject malicious scripts into a victim's website. Successful exploitation can result in unauthorized access, data theft, or website defacement. Users are advised to update these plugins to their latest versions as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r8WM9Z
https://www.cve.org/CVERecord?id=CVE-2023-1119
https://nvd.nist.gov/vuln/detail/CVE-2023-1119

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2023-1119

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations