Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Vektor-inc Subscribe
Filtered by product Vk All In One Expansion Unit
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-0230 1 Vektor-inc 1 Vk All In One Expansion Unit 2023-03-03 N/A 5.4 MEDIUM
The VK All in One Expansion Unit WordPress plugin before 9.86.0.0 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.