CVE-2023-7194

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Jan 22, 2024
Updated: Jan 25, 2024
CWE ID 79

Summary

CVE-2023-7194 is a vulnerability in the Meris WordPress theme through version 1.1.2. It allows for Reflected Cross-Site Scripting (XSS) attacks, which could be exploited against high privilege users like admin. The affected products include the Meris WordPress theme. To remediate this vulnerability, it is recommended to update the theme to a version that includes proper sanitization and escaping of parameters before outputting them on the page. The potential danger of this vulnerability lies in the possibility of unauthorized access and manipulation of data by malicious actors.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-7194 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options