CVE-2023-4603
CVSS 3.1 Score 6.1 of 10 (medium)
Details
Published Nov 13, 2023
Updated: Nov 17, 2023
CWE ID 79
Summary
CVE-2023-4603 is a Reflected Cross-Site Scripting (XSS) vulnerability affecting the Star CloudPRNT plugin for WooCommerce on WordPress. Versions up to and including 2.0.3 are susceptible to this issue due to inadequate input sanitization and output escaping. This weakness allows unauthenticated attackers to inject malicious scripts into pages, potentially tricking users into executing these scripts by clicking on a link. Successful exploitation of this vulnerability could result in the theft of sensitive information or unauthorized system access.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Star Micronics EMEA